Security & Access

Question 1

Navigation to session security

Answer 1

Setup > Session security

Setup > Identity > Identity verification > session security level policies > session security

Question 2

Enable enhanced profile user interface

Answer 2

setup > user management settings > activate “enhanced user profile interface”

Question 3

How to set organization level Trusted IP Address

Answer 3

Setup > security > network access > new

Question 4

How to set profile level login IP address

Answer 4

Setup > profiles > select respective profile > login IP ranges (under system)

Question 5

Setup Audit Trail Navigation

Answer 5

Setup > Security > View Setup Audit Trail

Question 6

Where is Tab settings available ?

Answer 6

Profiles and permission sets

Question 7

Which app or system settings in profiles overwrites the role/hierarchy or permission rules ?

Answer 7

Selected profile > system permissions > modify all data

Selected profile > object settings > selected object > modify all/delete

Question 8

How to add or view a user to the permission set ?

Answer 8

setup > permission set > select particular permission set > manage assignments > add assignments or view

Or

select a user > click on “permission set assignments”

Question 9

Navigation for org wide defaults

Answer 9

Setup > Sharing settings > Org-wide defaults

Question 10

Can Sharing rules restrict access ?

Answer 10

No.
For example: an object with private/public read only can be granted additional access but sharing rules cannot restrict access to records beyond what was originally specified with org-wide defaults

Question 11

How to share manually from a record ?

Answer 11

select record > down arrow of right corner next to > sharing

Question 12

For which team the pre-defined team role is not listed and need to added before assigning users to the teams

1) Account Team
2) Opportunity Team
3) Case Team

Answer 12

Case Team

Question 13

Navigation for Case layout

Answer 13

Case > select a case > settings gear icon > edit page > click details section > case page layout
or
Object manager > case > case page layout

Question 14

Navigation for edit Field level security and view field accessibility

Answer 14

Object manager > select object > fields & relationships > select field > set field level security / view Field accessibility

Question 15

Navigation for public groups

Answer 15

setup > public groups > create new or edit existing

Question 16

What does the following control ?

1) Permission set and User profiles &
2) Roles

Answer 16

1) Object and Field level access

2) Record level access

Question 17

Which settings can modify the permissions for records a user doesn’t own ?

Answer 17

Org-wide defaults can be set separately for each object

Question 18

Enable self deactivation by users

Answer 18

Setup > Users management settings > user self deactivation

Question 19

Activate Multi-factor authentication

Answer 19

Session settings > Multi-factor authentication (moved to “high assurance” section)
Profile > select the profile > session settings > edit > session security level required at login set to “high assurance”

Question 20

How to set session time out ?

Answer 20

SetUp > Session settings > Force logout on session timeout

Also Disable session timeout warning popup can be set

Question 21

Can login hours control set up at org level ?

Answer 21

No, Login hours can be controlled at the profile level

Question 22

How to enable login forensics ?

Answer 22

setup > event manager > login event > enable storage

Question 23

How to ensure only the permissions accessible to the org is enabled while cloning a profile ?

Answer 23

Setup > User management > enable “restricted profile cloning”