User management - controlling users access Flashcards

1
Q

What are the four levels of data access ?

A

org(highest level of data access)
objects
field
records

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

how can you manage record level data access?

A

roles(hierarchies)
manual sharing
sharing rules
org wide default

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

what the highest level, you can SECURE DATA access to your organization

A

by maintaining a list of authorized users,
setting password policies,
and limiting login access to certain hours and certain locations.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Before configuring record access, what consideration should you take?

A

Should your users have open access to every record, or just a subset?
If it’s a subset, what rules should determine whether the user can access them?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

The permissions on a record are always evaluated according to a combination of what 3 levels of permissions?

A

object–,
field–,
record–level permissions.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

When object– versus record–level permissions conflict, ——————- win.

A

the most restrictive settings

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

organization–wide defaults are the defaults that specify the baseline level of access that users have to _____________that they don’t own

A

records

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Configure your organization–wide defaults for most restricted USER is allowed to access. Then use other _________________ (role hierarchies, sharing rules, and manual sharing) to open up the data to other users who need to access it.

A

other record–level security and sharing tools

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

You can specify the default level of access to records for each type of __________ or _______object.

A

standard or custom

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

You can never use organization–wide defaults to grant users __________ access than they have through their object permission.

A

MORE

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

To determine the organization–wide defaults for each object. consider…

A

Who is the most restricted user of this object?
Is there ever going to be an instance of this object that this user shouldn’t be allowed to see?
Is there ever going to be an instance of this object that this user shouldn’t be allowed to edit?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

the sharing model for an object can be set to one of four settings for the field

A

Private
Public Read Only
Public Read/Write
Controlled by Parent

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

when a sharing model field of an object is set to Private what actions can an non record owner do?

A

Only the record owner, and users above that role in the hierarchy, can view, edit, and report on those records.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

when a sharing model field of an object is set to Public Read Only what actions can an non record owner do?

A

All users can view and report on records but not edit them. Only the owner, and users above that role in the hierarchy, can edit those records.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

when a sharing model field of an object is set to Public Read/Write what actions can an non record owner do?

A

All users can view, edit, and report on all records.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

when a sharing model field of an object is set to Controlled by Parent what actions can an non record owner do?

A

A user can perform an action (such as view, edit, or delete) on a contact based on whether he or she can perform that same action on the record associated with it.

17
Q

When the organization–wide sharing setting for an object as Private or Public Read Only, you can grant users more access to records by setting up ______

A

a role hierarchy or defining sharing rules

18
Q

Sharing rules can only grant ____ access—they cannot be used to _____ access to records beyond what was originally specified with the organization–wide sharing defaults.

A

more

restrict

19
Q

The ____________ Employee profile is the most restricted user for each object

A

standard

20
Q

the Review object is automatically set to ________

A

Private

21
Q

You can’t set the organization–wide defaults for the Review object. This is because that object is on the detail side of a master–detail relationship, and, a detail record automatically inherits the sharing setting of

A

its parent.

22
Q

where is the Organization-Wide Sharing Defaults located?

A

From Setup, enter Sharing Settings in the Quick Find box, then select Sharing Settings.

23
Q

By default, Salesforce uses ———————–to automatically grant record access to users above the record owner in the hierarchy.

A

hierarchies, like a role hierarchy,

24
Q

Setting an object to Private makes those records visible only to ———————–

A

record owners and users above them in the role hierarchy.

25
Q

If you want to enable access to records for users above the record owner in the hierarchy for custom objects, use the Grant——————–

A

Access Using Hierarchies checkbox.

26
Q

If you deselect the “Grant Access Using Hierarchies” checkbox. for a custom object, you restrict record access to only ——————-

A

the record owner and users granted access by the organization–wide defaults.

27
Q

Deselecting “Grant Access Using Hierarchies,” users that are higher in the role hierarchy don’t receive ______________

A

automatic access.

28
Q

Users can in hierarchies still access records they don’t own by default (if Deselecting “Grant Access Using Hierarchies,” )—such as users with the “————————————————— system permissions.

A

View All” and “Modify All” object permissions and the “View All Data” and “Modify All Data”

29
Q

Updating the organization-wide defaults causes a sharing___________ to run automatically and apply any access changes to your records.

A

recalculation

30
Q

After sharing recalculation, refresh the Sharing Settings page to see your changes to see the updated status by going to To

A

view the updated status, from Setup, enter View Setup Audit Trail in the Quick Find box, then select View Setup Audit Trail.