Setup (38%) - Configuring Business Units, User and Permissions, Security and Passwords 1/4 Flashcards

1
Q

What Tenant types are available in Marketing Cloud?

A

Enterprise 2.0
Enterprise 1.0
Core
Agency

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is the tenant in an Enterprise 2.0 account?

A

A tenant is the top-level account and includes all associated business units

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is the tenant in an Enterprise 1.0 account?

A

A tenant is the top-level account and includes all associated On-Your-Behalf and Lock & Publish business units

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is the tenant in a Core account?

A

A tenant is a single account

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is the tenant in an Agency account?

A

Each top-level account and each associated client account is a separate tenant.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is a MID?

A

A unique member identification code assigned to every account and any associated child accounts.
Depending on your MC edition, tenants can include single or multiple MIDs.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

How many MIDs does an Enterprise 2.0 tenant include?

A

Multiple MIDs for Enterprise-edition accounts.

The Top-Level Account and all Child Accounts each have their own MID

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

How many MIDs does an Enterprise tenant include?

A

Multiple MIDs.

The Top-Level Account and all Child Accounts each have their own MID

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

How many MIDs does an Core tenant include?

A

A single top-level account with one MID

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

How many MIDs does an Agency tenant include?

A

Only the top-level account. Each associated client account unit is a separate tenant.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

How can you locate the Account Name and MID?

A

Account name is left of username. Hover over account name to see MID

Under username, navigate to Setup
Use Quick Find to navigate to Account Settings to find the Account Name and MID.
NOTE: The MID is listed as ‘Account ID’

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is the best practise recommendation for Security Settings: Session Timeout?

A

20 minutes

Controls how long the application remains open in a browser before the system automatically logs out and makes it hard for unauthorised users to access your account.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is the best practise recommendation for Security Settings: Login Expires After Inactivity?

A

90 days or fewer

This helps prevent unauthorised users from exploiting old accounts.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is the best practise recommendation for Security Settings: Invalid Logins Before Lockout?

A

3

Determines how many chances to enter the correct password for a username. Too many incorrect attempts require user to reset the password.
Helps prevent unauthorised users from repeatedly guessing a password.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What is the best practise recommendation for Security Settings: Count Invalid Logins Across Sessions?

A

Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

What is the best practise recommendation for Security Settings: Minimum Username Length?

A

8 characters

A longer username makes guessing the value more difficult.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

What is the best practise recommendation for Security Settings: Minimum Password Length?

A

8 characters or more

A longer password makes guessing the value more difficult due to an increased number of possibilities.

Tip: Ask users to create a passphrase with multiple words - easy to remember and longer password created.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

What is the best practise recommendation for Security Settings: Enforce Password History?

A

8 passwords remembered

Determines how frequently a user can reuse a password. Enforcing a longer history reduces authorised access to the account. But frequent password changes can cause users to compromise passwords by simply adding a number.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

What is the best practise recommendation for Security Settings: User Password Expires In?

A

90 days

Setting a shorter password expiration period can encourage problematic behaviour (adding numbers / writing down password) and setting too long a period can increase risk of compromise.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

What is the best practise recommendation for Security Settings: Send Password Change Confirmation Email?

A

Enable

This email helps alert a user to suspicious activity on their account.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

What is the best practise recommendation for Security Settings: Enable Audit Logging Data Collection?

A

Enable

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

What is the best practise recommendation for Security Settings: Enable Audit Logging Data Collection?

A

Enable

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

What is the best practise recommendation for Security Settings: Login Expires After Inactivity for API users?

A

API users aren’t exempt from login inactivity expiration. To avoid login expiration for API users, we don’t recommend this setting for API users. Otherwise, API users are required log in via the UI to avoid login expiration

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q

What happens when the Invalid Logins Before Lockout threshold is reached?

A

The application locks a users account - the users can’t access their account or request an activation code until the administrator unlocks that account.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q

Something about Multi Factor Authentication. (tbc)

A
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q

How can you increase password security?

A

Make sure that the password includes a mix of uppercase and lowercase letters, special characters, and numbers. (as well as Enforce Password History and Minimum Password Length!)

27
Q

What does the Security Settings: Exclude API Users from Password Expiration field do?

A

Allows you to set users with the API User checkbox selected to avoid changing their password.

NOTE Unless necessary, don’t select the ‘Exclude API Users from Password Expiration’ option. Instead schedule a time with your API users to change the API password when necessary.

28
Q

What does the Security Settings: Exclude FTP Users from Password Expiration field do?

A

Allows you to exempt FTP users from regular password changes.

NOTE: Unless necessary, don’t select the ‘Exclude FTP Users from Password Expiration’ option. Instead ask FTP users to schedule a time to change the FTP user password when necessary.

29
Q

What does the Security Settings: Enforce Export Email Allowlist control?

A

Ensure that your data remain with trusted users as a best practise.

The setting forces the application to export data only to those email addresses on the export email allowlist.
Precisely determine email addresses eligible to receive export data and notifications from your account.

30
Q

Which tenant types can access Business Units?

A

An Enterprise 2.0 tenant can organise Marketing Cloud by business units.

Business units are NOT available in Enterprise 1.0, Agency, or Core tenants.

31
Q

How can Business Units control access to information and sharing of information throughout Marketing Cloud?

A

A company with multiple divisions or brands can create a business unit for each brand, so that users within that business unit can access only their brand-specific content.

32
Q

Who can access items created in a Business Unit?

A

Users working in a business unit can access all items in that business unit.

33
Q

How can a user share items with other business units?

A

Items can be shared with users in other business units by placing them in a shared items folder in the Content and Subscribers sections of the application.

34
Q

What needs to be done before creating business units?

A

Map out your organisational structure for business units.
Mirror hierarchal company structure
Geographical regios
Workflow processes
Operational structure

35
Q

Where can an Admin create a Business Unit?

A

In Marketing Cloud Setup
> Business Units
> Create

36
Q

What needs to be defined for a new Business Unit?

A

Name (required) / Description (optional)
Time Zone
Date Format
(based on business unit’s users)
Business Unit Parent
Default name and address for email
Physical
Physical mailing address
Unsubscribe Settings

37
Q

How would an Admin add a User to a Business Unit?

A

Setup
Users - select user
Manage Business Units - select default
Assign user to business units
Save

TIP: You can import a file that creates multiple users in a business unit.

38
Q

How can an Admin view all users in a business unit?

A

Setup
Business Units
Select checkbox next to business unit
Click ‘View Users’

39
Q

What are the standard Marketing Cloud roles?

A

Marketing Cloud Administrator
Marketing Cloud Viewer
Marketing Cloud Channel Manager
Marketing Cloud Security Administrator
Marketing Cloud Content Editor / Publisher

40
Q

What permissions does a Marketing Cloud Administrator role have?

A

This role assigns Marketing Cloud roles to users and manages channels, apps, and tools.

This role applies primarily to all Marketing Cloud functionality except Email Studio.

41
Q

What permissions does a Marketing Cloud Viewer role have?

A

This role views cross-channel marketing activity results in Marketing Cloud.

This role is generally the most restrictive role and doesn’t allow access to creation, sending, or reporting activities

42
Q

What permissions does a Marketing Cloud Channel Manager role have?

A

This role creates and executes cross-channel interactive marketing campaigns and administers specific channels like Email Studio.

The role permits a user to create, send, and monitor Marketing Cloud journeys and messages. Those permissions include reports.

43
Q

What permissions does a Marketing Cloud Security Administrator have?

A

This role maintains security settings and manages user activity and alerts.

Assign this role to someone who determines user access and work with Marketing Cloud security.

44
Q

What permissions does a Marketing Cloud Content Editor / Publisher have?

A

This role creates and delivers messages through applicable channel apps.

The role permits a user to create and send Marketing Cloud journeys and messages. This role doesn’t include access to many reports.

45
Q

How can you customise roles or create additional roles in Marketing Cloud?

A

Setup
Quick Find: Roles
Select existing role to edit
OR ‘Create’ new one
Name
Select Allow or Deny permissions
Save

46
Q

How do Allow, Deny permissions work in Marketing Cloud?

A

An explicitly denied permission always overrides all other permissions. When a permission is not explicitly granted or denies, MC defaults to deny permission unless another role grants that permission.

47
Q

How can you create a user in Marketing Cloud?

A

Setup
Quick Find: Users
Create

48
Q

What preferences can Marketing Cloud users adjust to manage their own user experience?

A

Username > Cloud Preferences
User Settings > Edit
Change
display name,
reply email address,
time zone,
culture code (language)
Default login preference (select which MC app opens when you login)

49
Q

What does ‘Default Login Preference’ control under a users Cloud Preferences?

A

The Default Login Preference setting determines which app first displays to a Marketing Cloud user after that user logs in.

50
Q

How do standard roles and permissions work in Marketing Cloud?

A

You can assign one of 5 standard roles and more specific permissions. Permissions for these roles can’t be modified.
Each role includes a set of permissions that enable users to perform different tasks.

50
Q

How do standard roles and permissions work in Marketing Cloud?

A

You can assign one of 5 standard roles and more specific permissions. Permissions for these roles can’t be modified.
Each role includes a set of permissions that enable users to perform different tasks.

50
Q

How do standard roles and permissions work in Marketing Cloud?

A

You can assign one of 5 standard roles and more specific permissions. Permissions for these roles can’t be modified.
Each role includes a set of permissions that enable users to perform different tasks.

51
Q

How many characters can a password include?

A

No more than 30 characters.

52
Q

What does User Permissions in Marketing Cloud control?

A

A permission is a tool to control a user’s access to screens in Marketing Cloud. By checking the box next to a permission, you can enable or disable that permission.

53
Q

Can you log in as a user to offer troubleshooting and support in Marketing Cloud?

A

Yes, In Enterprise (1.0) accounts.

No, In Enterprise 2.0 accounts you are always logged in as self. Can’t login as another user.

54
Q

How do roles and permissions differ between Enterprise (1.0) and Enterprise 2.0 accounts?

A

Enterprise - uses Permissions

Enterprise 2.0 0 uses Roles to control the actions a user can perform in the application. A role represents a group of permissions.

55
Q

How does sharing differ between Enterprise (1.0) and Enterprise 2.0 accounts?

A

Enterprise - uses Global Folders

Enterprise 2.0 - uses Shared Folders

56
Q

How do ‘Business Units’ differ between Enterprise (1.0) and Enterprise 2.0 accounts?

A

Enterprise 2.0 business unit features are similar to Enterprise Lock and Publish functionality in Email Studio.

57
Q

How do ‘Business Units’ differ between Enterprise (1.0) and Enterprise 2.0 accounts?

A

Enterprise 2.0 business unit features are similar to Enterprise Lock and Publish functionality in Email Studio.

58
Q

Use cases for Business Units

A

Separate brands / divisions / regions
Separate branding for each division / marketing teams
Set of common assets that require sharing between marketing teams.
Separate space for testing / UAT

59
Q

Marketing Cloud has two main role types:

A

Classic - legacy roles. Can be modified and focused on Email Studio permissions.

Marketing Cloud - standard roles cannot be modified (and generally do not include Email Studio permissions). They govern the MC suite of apps.

60
Q

What are Permissions in Marketing Cloud?

A

Permissions are micro-level security. They are very granular.

Example: The ability to Create, Edit in Journey Builder.

61
Q

What are Roles in Marketing Cloud?

A

Roles are macro-level security.

They are a collection of ‘Permissions’.

These are divided into Marketing Cloud and Email Studio Roles.

62
Q

To assign your users a role and specific permissions from the users screen in MC, what conditions must you meet?

A

One of:
Marketing Cloud Administrator
Manage Roles permission enabled in Email permissions
Core, Advanced, or Enterprise 1.0 user with the Add Users to Account permission