Which statement is true regarding field-level secruity?(Choose Two)
- It is enforced through the UI and the API
- It can be used to prevent users from seeing specific records
- It can be used to make a field required
- It determines which fields are hidden, read-only, and read/write for a particular profile
Answer: 1 and 4
Which statement best describes the purpose of the profile?
- It controls access to records within your organization
- It is a way for the Sys Admin to determine who can see specific opportunites in your org
- It determines what users can do with the records hat they can access
- It is a way for the sys Admin to determine who can use the workflow feature
Answer: 3
These contain user permissions and access settings that control what users can do
Profiles
Profiles give users permission to each object and determine what a user can do to records within the object
Set the baseline of what users can see
Org-wide defaults
This/These control how much data users can see
Role hierarchies
These allow users to see/edit data they don’t own in an otherwise private setup
Sharing rules
Who can manually share a record?
- Owner
- Anyone above the owner in the hierarchy
- Admins
At what levels can you restrict logging in by IP address ranges?
- Org wide level
- Profile level
- Org wide level: Go to Setup > Security Controls > Network access*
- Users logging in to salesforce.com with a browser from trusted networks are allowed to access salesforce.com without having to activate their computers.*
Is a user always able to edit records they own?
DEPENDS: If their profile is not given READ access to that object then NO.
What is the maximum number of roles that can be created?
500
What is the difference between settings and permissions on a profile? List some of them.
- Settings determine what users can see in the user interface, for example, apps, tabs, record types, page layouts, and fields.
- Permissions determine what users can do with the data they have access to, for example, customize app, run reports, mass email, create leads, edit opportunities.
What do object permissions control?
The kind of records (object) users can view, create, edit, or delete
What information is contained in a user record?
- Personal information, such as name and contact details
- Security and access information, such as usemame, profile, role, and login history
- Locale information, such as time zone, locale, language, and currency
Does enabling Chatter Invitations require additional CRM licenses?
No, it uses no CRM licenses. However, each invitee that accepts the invitation to join
Chatter is assigned one of the 5,000 Chatter Free licenses that come with each erg.
One of your users receives an error message when they try to log in. Where could you look to
troubleshoot the issue?
The Login History related list on the user record
Which standard profile has these permissions?
Standard User Permissions+ can
import leads for the organization
Marketing User
Which standard profile has these permissions?
Can view, edit and delete their own
records
Standard User
How can you restrict login access to an organization?
You can restrict access to an organization by specifying login hours or login IP ranges
on user profiles.
What do organization-wide defaults control?
The default level of access users have to records they do not own, in each object
What does the role hierarchy control?
The role hierarchy lets you open up record access to users who may have been denied access by the organization-wide defaults. Users in higher roles inherit the special ownership privileges on all records owned by users in roles below them.
Additionally, the role hierarchy appears at the top of opportunity reports, allowing users to drill down to data at different levels of the hierarchy.
How does a profile differ from a role?
A profile determines what users can do with records they have access to, for example,
view or edit. A role determines what individual records users have access to.
Why are sharing rules used?
To grant additional record access to groups of users on an object-by-object basis,
allowing you to create exceptions to the organization-wide defaults
When would you choose to build a public group?
To simplify the creation of sharing rules when more than one sharing rule is required
Where can you configure field-level security?
You can configure field-level security when you create a new custom field, when you edit
an existing field in Setup, or by editing a profile.
