Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Salesforce > Salesforce DEV401 - Security > Flashcards

Salesforce DEV401 - Security Flashcards

Salesforce Dev 401 Certification

1
Q 
For a Contact object, all users should be able to see all the fields except User Y who should not be able to see Mobile Number field. This functionality will be achieved by
A. Organization Wide Default
B. Profile
C. Field Level Security
D. Page Layout
E. Roles
A

C. Field Level Security

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q 
A user has Read only Access to the account, will he be able to attach a file in the Attachment related list on a record?
A. Yes
B. No
C. Yes, if the file is less than 5 MB
D. Yes, if file is more than 5 MB
A

B. No

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q 
What CANNOT be done using profiles?
A. Control the tab access
B. Set the CRUD permissions
C. Give access to records by modifying the record types
D. Control password settings
A

C. Give access to records by modifying the record types

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Does Salesforce.com recommend setting the sharing to private for the objects on which you grant “Read” access for your Site?
A. True
B. False

A

A. True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q 
Which Feature in Salesforce.com allows managers to see the data of their subordinates?
A. Organization Wide Defaults
B. Role Hierarchy
C. Manual Sharing
D. Apex Sharing
E. Profiles
A

B. Role Hierarchy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is the difference between “View All Data” and “View All” permission on Profile?
A. “View All Data” overrides sharing settings for all objects in the organization, while “View All” overrides sharing settings for the named object.
B. The “View All Data” overrides sharing settings for the named object, while “View All” overrides sharing settings for all objects in the organization.
C. Both have the same functionality
D. View All Permission allows the user to view the data, whereas View All allows the user to view the Setup

A

A. “View All Data” overrides sharing settings for all objects in the organization, while “View All” overrides sharing settings for the named object.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Mini page layouts inherit record type and profile associations, related lists, fields, and field access settings from their associated page layout.
A. True
B. False

A

A. True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q 
You can grant “Read” and “Create” permissions on all standard objects in Sites except
A. Products
B. Price books
C. Ideas
D. All of the above
A

D. All of the above

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Can field-level access settings inherited from the associated page layout be changed on the Mini Page layout?
A. Yes
B. No
C. Depends on the Profile Permissions

A

B. No

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Sharing Rules are used to
A. Restrict the Access to users in Public Groups
B. Extend the Access to users in Public Groups
C. Restrict the Access to other Developers
D. Extend the Access to other Developers

A

B. Extend the Access to users in Public Groups

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

If a field is required in the page layout and read-only in the field-level security setting, what will happen?
A. The page layout overrides the field-level security and the field will be required only for the user
B. The field-level security overrides the page layout and the field will be read only for the user
C. This case will never arise and if tried an error will be thrown
D. Both will be over ridden by the Profile level permissions

A

B. The field-level security overrides the page layout and the field will be read only for the user

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Divisions do not restrict users’ access to data and are not meant for security purposes.
A. True
B. False

A

A. True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

It is possible to share a custom object record manually.
A. True
B. False

A

B. False

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q 
What minimum level of access is required on account to add a task to it?
A. Read
B. Edit
C. Delete
D. Any of the above
A

B. Edit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q 
Which Custom Object relationship has no effect on security of the related object?
A. Master-Detail relationship
B. Lookup relationship
C. Open relationship
D. None of the above
A

B. Lookup relationship

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What is the use of marketing user profile?
A. User can create campaigns
B. User can import Leads
C. User can work in marketing Application
D. None of the above

A

A. User can create campaigns

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Under what circumstances would the sharing button to be enabled on a detail view for a record.
A. A developer has added the button to the page layout
B. When record sharing is enabled in the user profile
C. When record sharing is set to public read only or private for the object
D. When record sharing is set to public read/write for the object

A

C. When record sharing is set to public read only or private for the object

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Fields hidden using Field Level Security are subject to Data Validation Rules.
A. True
B. False

A

A. True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Based solely on the role hierarchy a manager can do all of the following EXCEPT:
A. View, edit, delete, and transfer his/her and his/her subordinate’s records
B. Extend sharing on both his/her and his/her subordinate’s records
C. View all folders his/her subordinate has access to, i.e., Reports, Documents, and Email Templates
D. View records his subordinate does not own but can view

A

C. View all folders his/her subordinate has access to, i.e., Reports, Documents, and Email Templates

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

If a profile does not have access to an application, that profile will also not have access to the tabs and objects of that application.
A. True
B. False

A

B. False

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

Which of the following does a Profile control?
A. Username and Password
B. Role level access
C. Read, Create, Edit, and Delete permissions
D. Sharing rules

A

C. Read, Create, Edit, and Delete permissions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q 
How many criteria-based sharing rules per object can be created? (Spring'11 Release)
A. 10
B. 50
C. 100
D. 200
E. No Limit
A

B. 50

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

A criteria-based sharing rule that specifies “Employee” in a text field won’t share records with “employee” in the field.
A. True
B. False

A

A. True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

Records are in “New” status when created, and are only visible to a select set of users. Once in “Approved” status, the records are visible to all users. How can this be implemented?
A. Set the object level sharing to Private, add a workflow rule to update the sharing rule when status changes.
B. Set the object level sharing to Public Read-Only, restrict the sharing when status is ‘New’.
C. Set the object level sharing to Private, create a public group with appropriate users, and modify manual sharing to public group based on status
D. Create role hierarchy, modify the user profiles when status changes

A

C. Set the object level sharing to Private, create a public group with appropriate users, and modify manual sharing to public group based on status

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q 
What should be done in Field Level security settings to make a field Read-only for all profiles?
A. Enable Visible and Enable Read-Only
B. Disable Visible but Enable Read-Only
C. Enable Visible but Disable Read-Only
D. Disable Visible and Disable Read-Only
A

A. Enable Visible and Enable Read-Only

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

Child records in a lookup relationship do not inherit the security of their parents
A. True
B. False

A

A. True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q

Field level security overrides any less-restrictive field access settings in the page layouts and search layouts
A. True
B. False

A

A. True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q

A developer needs to make a field that is normally accessible by most users, inaccessible on the report wizard for specific users. What the best method to fulfill that requirement?
A. Field level security
B. Remove the field from the page layout
C. Remove the field from the user profile
D. Change my display under personal settings

A

A. Field level security

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q 
1.	Universal Recruiters wants to make access to records in such a way that all managers should be able to access records that are accessible to their team members. Which feature of Force.com's security should be used to implement this requirement.   
A.	Object level access to profiles 
B.	Field level access to profiles 
C.	Organization wide defaults 
D.	Role hierarchy 
E.	Sharing rules 
F.	Manual sharing
A

D. Role hierarchy

30
Q

An organization wishes to have everyone view/edit records on an object, except for a single person x who should only have read-only access to the object. What is the best way to implement the requirement?
A. Modify the sharing access for the object to public read/write and remove user x from the role hierarchy
B. Modify the sharing access for the object to private and remove user x from the role hierarchy
C. Modify the sharing access for the object to public read only, create a public group with everyone except user x; create a sharing rule and define read/write access to the public group.
D. Modify the page layout to be read-only.

A

C. Modify the sharing access for the object to public read only, create a public group with everyone except user x; create a sharing rule and define read/write access to the public group.

31
Q

How does Salesforce enforce data access using Role Hierarchy?
A. Users are given access to the records owned by the users who are below them in the role hierarchy
B. Users are given access to the records owned by the users who share the same role on the role hierarchy.
C. Users are given access to the records accessible by the users who are below the role hierarchy.
D. Users are given access to the records accessible by the users who are above them in the role hierarchy.

A

A. Users are given access to the records owned by the users who are below them in the role hierarchy

32
Q 
Profiles have the following permissions to be selected (select all that apply)
A. View All Data
B. Delete All Data
C. Modify All Data
D. Customize Application
E. Data Loader only user
F. Password Never Expires
G. Load Data through Data Loader
A

A. View All Data
C. Modify All Data
F. Password Never Expires

33
Q 
Custom objects in Sites have which kind of permission?
A. Read Only
B. Read and Create
C. Read, Create and Edit
D. Read, Create, Edit and Delete
A

D. Read, Create, Edit and Delete

34
Q

What is the purpose of checking the Marketing User checkbox at the User level?
A. User can create Campaigns
B. User can import Leads
C. User can work in the Marketing Application
D. User can be assigned Marketing Manager profile
E. User can work on Campaign object
F. None of the above

A

B. User can import Leads

35
Q 
\_\_\_\_\_\_ allow you to offer different business processes, picklist values, and page layouts to different users based on their profiles.
A. Record Types
B. Custom Setting
C. Junction objects
D. Workflow Rules
E. Visualflow
A

A. Record Types

36
Q

Permissions on Standard profiles cannot be customized
A. True
B. False

A

A. True

37
Q

Under what circumstances would the sharing button to be enabled on a detail view for a record.
A. A developer has added the button to the page layout
B. When record sharing is enabled in the user profile
C. When record sharing is set to public read only or private for the object
D. When record sharing is set to public read/write for the object

A

C. When record sharing is set to public read only or private for the object

38
Q

What settings can you specify on a profile? (2 answers)
A. Revoke sharing permissions
B. Enable record types
C. Enable create read, create, edit, and delete on objects
D. Specify language

A

B. Enable record types

C. Enable create read, create, edit, and delete on objects

39
Q 
Record Types allow developers to associate \_\_\_\_\_\_\_\_\_\_ and \_\_\_\_\_\_\_\_\_\_\_ to users based on their profile (2 answers)
A. Picklist values
B. Role
C. Business Processes
D. Hidden Characters
E. Subclassing
F. Forecasting
G. Error Handling
A

A. Picklist values

C. Business Processes

40
Q 
Which of these is not a standard profile?   
A.	Developer 
B.	Contract Manager 
C.	Read only 
D.	Solution Manager
A

A. Developer

41
Q 
1.	When designing an application, a developer needs to make a field editable to all profiles. In field level security what settiings should be used in this situation.   
A.	Disable Visible and Read-Only 
B.	Disable Visible but Enable Read-Only 
C.	Enable Visible but Disable Read-Only 
D.	Enable Visible and Read-Only
A

C. Enable Visible but Disable Read-Only

42
Q

Encrypted fields are editable regardless of whether the user has the “View Encrypted Data” permission.
A. True
B. False

A

A. True

43
Q

Roll-up summary and formula fields are always read only on detail pages and not available on edit pages
A. True
B. False
C. Only applicable to Roll-up Summary Fields
D. Only applicable to Formula Fields

A

A. True

44
Q 
A field hidden using Field Level Security is available from
A. Search
B. Reports
C. Page Layout
D. Console
E. None of the Above
A

E. None of the Above

45
Q 
\_\_\_\_ sharing rules determine who to share records with based on field values in records. (Spring'11 Release)
A. Criteria-based
B. Data - based
C. Object - based
D. Manual
E. Apex
A

A. Criteria-based

46
Q

Sharing rules can never be stricter than your organization-wide default settings?
A. True
B. False

A

A. True

47
Q

Territory management only affects accounts and the standard objects that have a master-detail relationship to accounts.
A. True
B. False

A

A. True

48
Q

Notes and attachments marked as private via the Private checkbox are accessible only to the person who attached them and to the person above them in the Role Hierarchy.
A. True
B. False

A

B. False

49
Q

To delete a note or attachment, you must be the owner of the note or attachment or an administrator with the “Modify all Data” permission.
A. True
B. False

A

A. True

50
Q

A queue is a location where records can be routed to await processing by a group member
A. True
B. False

A

A. True

51
Q

An organization has custom objects to track job positions and job position salaries. Everyone in the organization can view the positions. However, only select users can view the salary records. What steps should a developer take to ensure the requirement is fulfilled?
A. Create a lookup relationship between positions and salaries; define access on position and private access on salary
B. Create a master-detail relationship between positions and salaries; define public access on position and private access on salary.
C. Create a master-detail relationship between positions and salaries; define private access on position and create sharing rules on salary.
D. Create a lookup relationship between positions and salaries; define public access on position and public access on salary; create sharing rules on salary to restrict visibility.

A

A. Create a lookup relationship between positions and salaries; define public read-only access on position and private access on salary

52
Q 
Encrypted fields provide data masking for all users except those with \_\_\_\_ permission
A. View Encrypted Data
B. View All Data
C. Modify All data
D. Administrator
A

A. View Encrypted Data

From Salesforce online help: The value of an encrypted field is only visible to users that have the “View Encrypted Data” permission.

53
Q

Manual Sharing can be granted by Owners, anyone above the Owners in the Role Hierarchy, and System Administrators
A. True
B. False

A

B. False

54
Q

Profile controls Login Hours and Login IP Ranges
A. Yes this is correct
B. No, Profile can only contact Login hours. IP Ranges is not controlled here
C. No, Profile can only control IP Ranges, and not login hours
D. No, Profile does not control login hours or Login IP Ranges

A

A. Yes this is correct

55
Q

Lacking the “Read” permission for an objects means that the user will not be able to access it at all
A. True
B. False

A

A. True

56
Q 
When creating a sharing rule, what entities can be shared with? (3 answers)
A. Public Groups
B. Users
C. Roles
D. Roles and Subordinates
E. Queues
A

A. Public Groups
C. Roles
D. Roles and Subordinates

57
Q 
Organization wide access levels are:
A. Public Read/Write
B. Public Read Only
C. Private Read /Write
D. Private Read only
E. Private
A

A. Public Read/Write
B. Public Read Only
E. Private

58
Q

A user must be associated to at least one Role
A. True
B. False

A

A. True

59
Q

All these statements are true regarding Sharing Rules, except:
A. Automatic exceptions to Organization Wide Defaults for a particular group of users
B. Never permitted to be more restrictive than Organization Wide Default settings
C. Used to open up access to records
D. Can to be more restrictive than Organization Wide Defaults

A

D. Can to be more restrictive than Organization Wide Defaults

60
Q

Organization Wide Defaults are (select all that apply)
A. Security settings that define the baseline level of access to records that you do not own
B. Used to restrict access to data
C. Defined for Standard Objects
D. Defined for Custom Objects
E. Defined for Unclaimed objects

A

A. Security settings that define the baseline level of access to records that you do not own
B. Used to restrict access to data
C. Defined for Standard Objects
D. Defined for Custom Objects

61
Q 
What is true about Role Hierarchy? (select all that apply)
A. Controls data visibility
B. Controls record rollup for reporting
C. Is the company's Organization chart
D. Controls Custom Apps Record Types
A

A. Controls data visibility
B. Controls record rollup for reporting
C. Is the company’s Organization chart

62
Q 
Which of the following is a standard Profile?
A. Sales User
B. Marketing User
C. Invoice Manager
D. Contract Manager
A

B. Marketing User

D. Contract Manager

63
Q

Users can have access to more than one Record Type for an object
A. True
B. False

A

A. True

64
Q

Any member of a queue has the same access to all records in the queue that an owner would have.
A. True
B. False
C. Not always

A

A. True

65
Q

Profiles is a sub-set of the Sharing Model
A. True
B. False

A

A. True

66
Q

Custom Objects can be owned by queues
A. True
B. False

A

A. True

67
Q

A queue is a location where records can be routed to wait processing by a group member
A. True
B. False
C. Maybe sometimes

A

A. True

68
Q 
Public Groups can be made of any combination of the following, EXCEPT (3 answers)
A. Users
B. Roles
C. Queues
D. Roles and Subordinated
E. Public Groups
A

A. Users
B. Roles
C. Queues

69
Q

Criteria based sharing rules for Text and Text Area fields are case-sensitive.
A. True
B. False

A

A. True

70
Q

A corresponding list view is also automatically created, when a queue is created in Salesforce.com.
A. True
B. False

A

A. True

Salesforce (9 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions