Term
Question No. 1 / Out of 60
Question Type: Single Choice
A banking company wants its customers' Date of Birth Field searchable by Banking Reps but only editable by Customer Support Reps.
Which approach is recommended to meet this requirement?
A. Create a Validation rule in the Data of Birth field that returns true only when the user's profile name matches the Customer Support Rep.
B. Set the Field Level Security for the Date of Birth field to be Visible to the Customer Support Rep Profile, and set the Date of Birth Field Visible and Read-only to the Banking Rep profile.
C. Add the Date of Birth field to the Search layout of the Contact Object. Modify the Page layout assigned to the Customer Support Rep and add the Date of Birth field as Required. |
|
Definition
| B. Set the Field Level Security for the Date of Birth field to be Visible to the Customer Support Rep Profile, and set the Date of Birth Field Visible and Read-only to the Banking Rep profile. |
|
|
Term
Question No. 2 / Out of 60
Question Type: Single Choice
Sales operations at Universal Containers (UC) have created Public Reports and dashboard folders for sales managers. Sales operations and sales managers report to the VP of Sales. Sales operations currently spend a few hours each month updating users mat should have access to edit reports and dashboards in these folders.
How should UC grant access to sales managers to automate access to these Public Reports and Dashboard folders?
Options:
A. Share the folders with the Sales Managers' profile.
B. Share the folders with a 'Sales Managers' Public
Group.
C. Share the folders with the lowest rates in the Role Hierarchy; superiors will get access automatically. |
|
Definition
| A. Share the folders with the Sales Manager's profile. |
|
|
Term
Question No. 3 / Out of 60
Question Type: Single Choice
A user posts a file to the Chatter feed for a record of an object that has a Private organization-wide default.
Which statement accurately describes who can view the file by default?
Options:
A. The user who posted the file and users with a shared chatter post link to the file
B. The user who posted the file and users with access to the record
C. Only the user who posted the file |
|
Definition
| B. The user who posted the file and users with access to the record |
|
|
Term
Question No. 4 / Out of 60
Question Type: Single Choice
Universal Containers (UC) requested that branch managers and UC branch staff should only see customers and related information in their geographic location.
Which options should be used together to achieve the requirements?
Options:
A. Create the Account Team and add branch manager team members, and configure organization-wide defaults of the Account object.
B. Configure organization-wide defaults of the Account object and create sharing rules.
C. Configure Role Hierarchy and create sharing rules. |
|
Definition
| B Configure organization-wide defaults of the Account object and create sharing rules. |
|
|
Term
Question No. 5 / Out of 60
Question Type: Single Choice
If a Case requires involvement from one of the Legal team, the Case owner adds one of the corporate lawyers to the Legal SME field on the case.
Since cases are private, how can we grant a lawyer access to a specific case when their assistance is needed?
Options:
A. Create a Criteria-Based Sharing Rule that shares to the Corporate Legal Team Role when ''legal assistance is needed. And the field is checked.
B. Use Apex Managed sharing in a case Trigger that shares the record to the user identified in the Legal SME field.
C. Create a Criteria-Based Sharing Rule that shares with the Legal Public Group when the ''legal assistance needed?'' field is checked. |
|
Definition
| B. Use Apex Managed sharing in a case Trigger that shares the record to the user identified in the Legal SME field. |
|
|
Term
Question No. 6 / Out of 60
Question Type: Single Choice
A sales coach at Universal Containers wants to create and share a report folder with other sales coaches,
Which two permissions are required to accomplish this?
Options:
A. Manage reports in Public Folders and edit My Reports.
B Create and customize Reports and Report Folders.
C. Create Report Folders and manage Reports in Public Folders. |
|
Definition
| B. Create and customize Reports and Report Folders. |
|
|
Term
Question No. 7 / Out of 60
Question Type: Single Choice
An architect from a previous project implemented Platform Shield Encryption for a company.
However, based on a recent audit, the company's Privacy Team identified three additional fields in their Account Records (Billing Street, Billing City, and Phone) that need to be securely end-protected.
How should an architect proceed with this new policy change?
Options:
A. Use the Encryption Policy and contact Salesforce to update the existing records so that their field values are encrypted.
B. Use Classic Encryption to ensure all fields are protected and contact Salesforce for help with encryption verification,
C. Use the Encryption Policy and wait for an email from Salesforce indicating the field values are encrypted. |
|
Definition
| A. Use the Encryption Policy and contact Salesforce to update the existing records so that their field values are encrypted. |
|
|
Term
Question No. 8 / Out of 60
Question Type: Single Choice
Which option can be selected to share data when creating a sharing rule?
Options:
A. Users
B. Profiles
C. Roles |
|
Definition
|
|
Term
Question No. 9 / Out of 60
Question Type: Single Choice
Which advanced tool should Salesforce enable for large-scale Role Hierarchy realignments?
Options:
A. Granular Locking
B. Partitioning by Divisions
C. Skinny Table Indexing |
|
Definition
|
|
Term
Question No. 10 / Out of 60
Question Type: Single Choice
Universal Containers uses the Standard WorkOrder object to track various work orders sent to field agents. Currently, the WorkOrder object has more than 400 fields. There are eight different types of work order processes established. The Director of Customer Service wants to ensure that field agents get to see only the required information specific to the work order type they are addressing.
Which option is recommended to implement this requirement?
Options:
A. Use a custom LWC to override the view action of WorkOrder with custom metadata type defining relevant fields per work order type
B. Use different page layouts per work order type with different sections representing key information about the specific work order type.
C. Use Dynamic form to add different page sections and control visibility of sections by Work Order RecordType value, |
|
Definition
| C. Use Dynamic form to add different page sections and control visibility of sections by Work Order RecordType value, |
|
|
Term
Question No. 11 / Out of 60
Question Type: Single Choice
Sales operations at Universal Containers (UC) wants to create list views to filter opportunities for certain geographies.
How should UC hide list views that are not relevant to an individual user since there will be more than 50 list views?
Options:
A. Share the list views with the appropriate role and internal subordinates.
B. Share the list views with the appropriate queue.
C. Share the list views with the appropriate individual users. |
|
Definition
| A. Share the list views with the appropriate role and internal subordinates. |
|
|
Term
Question No. 12 / Out of 60
Question Type: Single Choice
A sales rep at Universal Containers was added to an opportunity team with Read/Write permissions.
Which action is she allowed to perform in the opportunity?
Options:
A. Add/remove members of the opportunity team.
B. Replace opportunity owner.
C. Update opportunity stage. |
|
Definition
| A. Add/remove members in the opportunity team. |
|
|
Term
Question No. 13 / Out of 60
Question Type: Single Choice
Universal Containers would like to store an encryption key within Salesforce for use in Apex Code, but does not want users to be able to see this confidential key. Users require the view setup permission.
How can Universal Containers securely store the confidential key?
Options:
A. Create a protected custom metadata type that stores the encryption key. Package the protected custom metadata type with its associated records in a managed package. Install the package in the production org.
B. Create 4 protected custom metadata types that stores the encryption key. Package the protected custom metadata type with its associated records in an unlocked package. Install the package In the production org.
C. Create 6 custom metadata types that store the encryption key. Make sure that only the admin profile has access to the custom metadata type $0 so that end users cannot access the encryption key. |
|
Definition
| A reate a protected custom metadata type that stores the encryption key. Package the protected custom metadata type with its associated records in a managed package. Install the package in the production org. |
|
|
Term
Question No. 14 / Out of 60
Question Type: Single Choice
Who can view a PDF that is uploaded to the Files Home private library by 8 user?
Options:
A. he user and users with View All Data p. permission.
B. the user and users above him/her in the Role Hierarchy.
C. Only the user. |
|
Definition
|
|
Term
Question No. 15 / Out of 60
Question Type: Single Choice
Universal Containers (UC) has affiliates who sell containers in countries where UC does not have a local office. UC uses a Partner Community to manage the sales cycle in those countries. One of its affiliates has grown substantially and restructured its internal sales team with the following structure; Sales VP ---> Director of Sales ---> Sales Manager ---> Sales Reps. Sales Reps should not see each others' opportunities, and visibility of deals should open up within the Sales Rep's hierarchy.
What is the main problem an architect should address in this situation?
Options:
A. Partner User roles are limited to three levels.
B. The Channel Manager role cannot be shared with the Partner Community.
C. Partner Community does not support Role Hierarchy. |
|
Definition
| A. Partner User roles are limited to three levels. |
|
|
Term
Question No. 16 / Out of 60
Question Type: Single Choice
Universal Containers (UC) has a mostly Private organization-wide default, as it Is a core principle of UC to respect client data privacy. UC has implemented complex processes for granting access to Opportunity dat
a. A few key members of the sales reporting team need to always be able to see, but not change, Opportunity data for all opportunities.
What should an architect recommend as an approach to meet these requirements?
Options:
A. Create a permission set that grants the View All permission for Opportunity.
B. Create a permission set that grants the View All Data permission.
C. Give the View All Data permission to the Sales Reporting profile. |
|
Definition
| A. Create a permission set that grants the View All permission for Opportunity. |
|
|
Term
Question No. 17 / Out of 60
Question Type: Single Choice
Universal Containers (UC) operates worldwide, with offices in more than 100 regions in 10 different countries, and has established a very complex Role Hierarchy to control data visibility. In the new fiscal year, UC is planning to reorganize the roles and reassign account owners.
Which feature should an architect recommend to avoid problems with this operation?
Options:
A. Skinny table
B. Partition data using Divisions
C. Deferred Sharing Recalculation |
|
Definition
| C. Deferred Sharing Recalculation |
|
|
Term
Question No. 18 / Out of 60
Question Type: Single Choice
Universal Containers uses personal accounts to represent retail customers and Business Accounts to represent commercial customers. The retail sales team should not have access to commercial customers but should have access to ALL retail customers.
With the organization-wide default on Account set to Private, how should the architect meet these requirements?
Options:
A. Create an owner-based sharing rule on AccountContactRelation to grant access to all account contact roles records owned by retail sales reps.
B. Update the Retail Sales profile to grant access to Person Account record type.
C. Create o criteria-based sharing rule giving the Retail Sales role access to Accounts of type PersonAccount. |
|
Definition
| C. Create o criteria-based sharing rule giving the Retail Sales role access to Accounts of type PersonAccount. |
|
|
Term
Question No. 19 / Out of 60
Question Type: Single Choice
Universal Containers created a public group with certain sales engineers to help on complex deals, as well as a sharing rule to grant access to these opportunities. The Opportunity organization-wide default is Private,
What is the impact of these sharing settings?
Options:
A,. Other sales engineers who are in the same Role Hierarchy as the sales engineers of the public group will also have access to these records.
B. Sales engineers and their managers in the Role Hierarchy will also have access to these records.
C. Subordinates of managers who have sales engineers in the public group will also have access to these records. |
|
Definition
| C. Subordinates of managers who have sales engineers in the public group will also have access to these records. |
|
|
Term
Question No. 20 / Out of 60
Question Type: Single Choice
A banking company uses & VIP Flag in the Contact Object that they want only Private Banking Reps to see. Which approach is recommended to meet this requirement?
Options:
A. Set the Field Level Security for the VIP Flag field so that it is visible to Private Banking Rep Profile.
B. Define a page layout for Contact Object and add the VIP Flag field for that layout. Remove the VIP Flag field from other layouts.
C. Change the type of VIP Flag field to a picklist, define a new record type for the Contact Object, and make the picklist field available for Editing. |
|
Definition
| A. Set the Field Level Security for the VIP Flag field so that it is visible to Private Banking Rep Profile. |
|
|
Term
Question No. 21 / Out of 60
Question Type: Single Choice
A company intends to bring work from anywhere culture in a bid to improve productivity. Their sellers use a wide variety of devices with different form factors. The company currently uses a page layout to display opportunity record details to the sellers. The Regional Vice President of Sales is complaining about the incorrect alignment of data in opportunity records, making it difficult for some sellers.
Which steps are recommended to rectify this?
Options:
A. Use a visualforce override for Opportunity view action, identify the form factor onLoad action and display relevant layouts based on form factors,
B. Use Dynamic Form to define different field sections applicable for different form factors of devices.
C. Use a custom LWC override for Opportunity view action, identify form factor onLoad action and display relevant layouts based on form factors. |
|
Definition
| B. Use Dynamic Form to define different field sections applicable for different form factors of devices. |
|
|
Term
Question No. 22 / Out of 60
Question Type: Single Choice
Dreamforce presenters need to be able to edit their presentation details (summary, presenter biographies, etc) on a private custom object in
Salesforce (Presentation). All presenters for a presentation are captured on a presenter's junction object between the Presenter and the User.
How can this be accomplished?
Options:
A. Trigger on the Presenter junction object that adds the user to the Sales Team for the Presentation record.
B. Give Edit rights to the Presentation record via a Permission set that is given to the Presenters for a record.
C. Trigger on the Presenter junction object that uses Apex Managed sharing to add or remove access to the related Presentation record. |
|
Definition
| C. Trigger on the Presenter junction object that uses Apex Managed sharing to add or remove access to the related Presentation record. |
|
|
Term
Question No. 23 / Out of 60
Question Type: Single Choice
Universal Containers has a Performance Feedback custom object (Private organization-wide default) used by customers to report any issues with delivery drivers. Feedback should not be visible to the driver, but any feedback records should be accessible to people above them in the Role
Hierarchy, even when the driver changes managers. Assuming managers have Read access to the Feedback object, which three steps are necessary
to solve these requirements?
Options:
A. Remove Read permission on the Driver profile, have feedback ownership transferred to the driver's manager when feedback Is submitted, and use the Role Hierarchy to give access to a driver's manager.
B. Remove Read permission on the Driver profile, have feedback ownership transferred to the driver when feedback is submitted, and use the Role Hierarchy to give access to 4 driver's manager.
C. Remove Read permission on the Driver profile, have feedback ownership transferred to the driver when feedback is submitted, and create an ownership-based sharing rule, |
|
Definition
| B. Remove Read permission on the Driver profile, have feedback ownership transferred to the driver when feedback is submitted, and use the Role Hierarchy to give access to 4 driver's manager. |
|
|
Term
Question No. 24 / Out of 60
Question Type: Single Choice
Universal Containers requested to leverage Lightning Web Components (LWC) to improve support reps' user experience. LWC will be used as view layer, and Apex classes will have the business logic.
Which attention points should the development team consider when implementing this solution?
Options:
A. Once Apex runs on system mode, the development team needs to enforce record visibility
B. Create test classes including runAs test different users accessing the data,
C. Use isShareable, isEditable, and isCreatable to enforce field permissions. |
|
Definition
| A. Once Apex runs on system mode, the development team needs to enforce record visibility |
|
|
Term
Question No. 25 / Out of 60
Question Type: Single Choice
Customer complaints for bad interactions with a customer support agent are logged as Cases and assigned to a human resources representative. The agent of the complaint should not see the case, but their manager should.
How is this accomplished?
Options:
A. Trigger on Case to lookup and share to the manager of an Assigned Agent custom field (the subject of the complaint) using Apex Managed Sharing.
B. Criteria-based Sharing Rule on Case that shares to the Role Manager and above when a custom field Assigned Agent (subject of the complaint) Is not blank,
C. Case is owned by the subject of the complaint, so their manager in the role hierarchy can access the record. CRED permissions are removed on the Case so the agent cannot read the case record. |
|
Definition
| A. Trigger on Case to lookup and share to the manager of an Assigned Agent custom field (the subject of the complaint) using Apex Managed Sharing. |
|
|
Term
Question No. 26 / Out of 60
Question Type: Single Choice
...From customers on company-issued desktops and uses case objects to track customer issues and grievances. The company would like to capture
images of the customer site captured by field consultants while they are editing the case record during customer site visits. The Director of IT wants
to minimize customization and promote reusability of code artifacts wherever possible, what recommendations should an architect give to the company to implement the image capture requirement, while ensuring the customer that the service rep can continue to use the same lightning pages they were trained to use?
Options:
A. So Use Lightning Component as an override for the 'Edit' action on the lightning experience allowing image capture feature. Detect the form factor of the device and redirect the user to the default not overridden view.
B. Create 4 separate buttons ''Edit in Mobile', which opens & a custom lightning component that wi
C. Use Lightning Component as an override for the 'Edit'' action on mobile view allowing image capture feature. No Change is required for desktop users. |
|
Definition
| A. So Use Lightning Component as an override for the 'Edit' action on the lightning experience allowing image capture feature. Detect the form factor of the device and redirect the user to the default not overridden view. |
|
|
Term
Question No. 27 / Out of 60
Question Type: Single Choice
Sales Reps at Universal Containers sometimes create large files as a part of the Sales process that are too large to share over email. They would like
users to be able to share files with customers, but the CISO has requested that any file links shared must be protected by a password.
How can this be accomplished?
Options:
A. Set up an experience cloud site for customers to access files. Share the file with customers via chatter. Customers can then log into the site to access the content.
B. Sales reps can create a content delivery. During creation, the user should select the option to require a password to access content.
C. Utilize an AppExchange product for delivering password-protected files to their customers, |
|
Definition
| B. Sales reps can create a content delivery. During creation, the user should select the option to require a password to access content. |
|
|
Term
Question No. 28 / Out of 60
Question Type: Single Choice
Which method should be used to grant access to an unrelated group of users?
Options:
A. Public Groups
B. Sharing Sets
C. Role Hierarchy |
|
Definition
|
|
Term
Question No. 29 / Out of 60
Question Type: Single Choice
Besides their team accounts, sales managers at Universal Containers need to have
READ access to all accounts of the same segment in other countries. Role hierarchy was
implemented accordingly (based on countries), but a sales manager in the US is complaining
that he cannot view account records of the same segment in Canada. What should be done to grant access properly?
Options:
A. Create an owner-based sharing rule to grant access to account records that have the
same segment to all sales manager roles.
B. Change the role hierarchy and put all of the sales managers in the US and Canada in
the same role.
C. Create criteria-based sharing rules to grant access to account records that have the
same segment to all sales manager roles.
D. Create a public group and include all accounts of the same segment and grant access
through a permission set.
E. Owner-Based Sharing Rules
An owner-based sharing rule opens access to records owned by certain users. For example, a company's sales managers need to see opportunities owned by sales managers in a different
region. The U.S. sales manager could give the APAC sales manager access to the opportunities owned by the U.S. team using owner-based sharing. https://help.salesforce.com/articleView?id=security_sharing_rule_types.htm&type=5 |
|
Definition
A. Create an owner-based sharing rule to grant access to account records that have the
same segment to all sales manager roles. |
|
|
Term
Question No. 30 / Out of 60
Question Type: Single Choice
Universal Containers (UC) service reps are assigned to a profile that has ''View All'' in Case
object (Private OWD). To make sure service reps have access to all relevant information to
attend to customer requests, which two details should a salesforce Architects consider?
Choose 2 answers:
A. Service reps will be able to access all UC contact records if they are controlled by the parent.
B. Service reps will not be able to access all UC contact records if they are controlled by the parent.
C. Service reps will be able to access all the UC Account records due to Implicit Sharing.
D. Service reps will not be able to access all the UC account records because Account OWD is private. |
|
Definition
D. Service reps will not be able to access all the UC account records because Account OWD is private.
Explanation:
How can an architect achieve this?
https://developer.salesforce.com/docs/atlas.en-us.apexcode.meta/apexcode/apex_classes_per
ms_enforcing.htm
Example: To check the field-level read permission of the contact's email field before querying
for this field:
if (Schema.sObjectType.Contact.fields.Email.isAccessible()) {
Contact c = [SELECT Email FROM Contact WHERE Id= :Id];
}
Answer for B -
https://developer.salesforce.com/docs/atlas.en-us.apexcode.meta/apexcode/apex_classes_key
words_sharing.htm
The ''with sharing'' keyword allows you to specify that the sharing rules for the current user are
considered for the class. You have to explicitly set this keyword for the class because Apex code
runs in the system context. In the system context, Apex code has access to all objects and fields---
object permissions, field-level security, and sharing rules aren't applied for the current user. This
strategy ensures that code doesn't fail to run because of hidden fields or objects for a user. |
|
|
Term
Question No. 31 / Out of 60
Question Type: Single Choice
What is the security vulnerability in the following code snippet? Value of my Textfield is
Options:
A. SOQL Injection
B. Arbitrary Redirects
C. Cross-Site Scripting
D. Access Control |
|
Definition
|
|
Term
Question No. 32 / Out of 60
Question Type: Single Choice
Universal Containers has two custom objects: Job and Job Interview. The Job Interview object has a lookup relationship to Job. Both objects are set to Private in sharing settings. The HR team will own all Job and Job Interview records. They have asked their Salesforce Architect to automatically share the Job Interview when the Interviewer (lookup to user record) has been populated. The interviewer can be from any department. What method should the Architect use to achieve this requirement?
Options:
A. Build apex apex-managed sharing code to share Job Interviews with the Interviewer user
B. Build a criteria-based sharing rule between the Job Interview and the Interviewer
C. Build a standard sharing rule between the Job Interview and the Interviewer
. DBuild a workflow email notification to notify the interviewer of the record assignment |
|
Definition
| A. Build apex apex-managed sharing code to share Job Interviews with the Interviewer user |
|
|
Term
Question No. 33 / Out of 60
Question Type: Multiple Choice
A Sales Rep at Universal Containers wants to create a dashboard to see how his sales numbers compare with his peers. Assuming a Private model, which two permissions would the Sales Rep need to meet this requirement?
Options:
A. Manage Custom Report Types
B. Customize Application
C. Manage Dashboards
D. View All Data |
|
Definition
C. Manage Dashboards
D. View All Data |
|
|
Term
Question No. 34 / Out of 60
Question Type: Single Choice
Universal Containers has the following requirements: A custom Loan object requires Org-Wide Defaults set to Private. The owner of the Loan record will be the Loan Origination Officer. The Loan record must be shared with a specific Underwriter on a loan-by-loan basis. The Underwriters should only see the Loan records for which they are assigned. What should the Architect recommend to meet these requirements?
Options:
A. Use criteria-based sharing rules to share the Loan object with the Underwriter based upon the criteria defined in the criteria-based sharing
B. Create a lookup relationship from the Loan object to the User object. Use a trigger on the Loan object to create the corresponding record in the Loan share object
C. Create a master-detail relationship from the Loan to the User object. Loan records will be automatically shared with the Underwriter
D. Create an Apex Sharing Reason on the Loan object that shares the Loan with the Underwriter based upon the criteria defined in the Sharing Reason |
|
Definition
| B. Create a lookup relationship from the Loan object to the User object. Use a trigger on the Loan object to create the corresponding record in the Loan share object |
|
|
Term
Question No. 35 / Out of 60
Question Type: Single Choice
Universal Containers has developed Apex code to manually create AccountShare records to grant specific users access to individual Accounts. What must the Architect do to ensure the AccountShare records are not deleted when the owner of the Account is changed?
Options:
A. Create the share records and set the RowCause to a custom Apex Sharing Reason
B. Create the share records in a class with the ''Without Sharing'' keyword
C. Create the share records with the Delete on Owner Change field set to false
D. Create the share records and set the RowCause to Manual |
|
Definition
| A. Create the share records and set the RowCause to a custom Apex Sharing Reason |
|
|
Term
Question No. 36 / Out of 60
Question Type: Multiple Choice
Which two options provide implicit record access to users? Choose 2 answers
Options:
A. Read-only access to parent account for a user, based on a criteria-based sharing rule
B. Read-only access to parent account for a user with access to a child case
c. Access to child opportunities for the owner of the parent account
D. to related leads for the owner of the parent campaign |
|
Definition
B. Read-only access to parent account for a user with access to a child case
c. Access to child opportunities for the owner of the parent account |
|
|
Term
Question No. 37 / Out of 60
Question Type: Multiple Choice
How would you make sure the Visualforce page is security-proof? Choose 3 answers
Options:
A. Manually check for cross site
B. Manually check for sql injection
C. Submit to force security scanner
D. Use web application tool for security
E. Use debug to check hijacked requests |
|
Definition
C. Submit to force security scanner
D. Use web application tool for security
E. Use debug to check hijacked requests |
|
|
Term
Question No. 38 / Out of 60
Question Type: Multiple Choice
Susan posts a file to the Chatter feed for a record of an object.
Which two statements accurately describe who can view the file by default?
Options:
A. Susan and users with a shared Chatter post for the file.
B. Susan and users with the View all Data permission.
C. Susan and users with access to the record.
DSusan only |
|
Definition
B. Susan and users with the View all Data permission.
C. Susan and users with access to the record.
DSusan only |
|
|
Term
Question No. 39 / Out of 60
Question Type: Single Choice
To grant Universal Containers sales managers access to shipment records properly it was necessarily to the IT Team is worried about improper access to records.
Which two features and best practices should a Salesforce architect recommend to mitigate the risk?
Options:
A. USe isShareable keyword in Apex classes to assure record visibility will be followed
B. Use runAs system method in test classes to test using different users and profiles.
C. Use with Sharing keyword in Apex classes to assure record visibility will be followed
D. User isAccessable keyword Apex classes to assure recor visibility will be followed. |
|
Definition
| B. Use runAs system method in test classes to test using different users and profiles. |
|
|
Term
Question No. 40 / Out of 60
Question Type: Single Choice
Universal Containers has a requirement to integrate Salesforce with an external system to control record access.
What option should the Architect consider when designing a solution?
Options:
A. Use the Security API to modify the role hierarchy in Salesforce.
B. Use the SOAP API to maintain the related SObject_share records.
C. Use the Metadata API to maintain the related SObject records.
D. Use the SOAP API to create new Criteria-Based Sharing Rules in Salesforce. |
|
Definition
| B. Use the SOAP API to maintain the related SObject_share records. |
|
|
Term
Question No. 41 / Out of 60
Question Type: Multiple Choice
In order to comply with regulatory requirements, Universal Health must encrypt all Personally Identifiable Information (PII), both while it is being transmitted over the network and while it is at rest. Universal Health has completed a data audit and has determined that 12 fields on the contact record can contain PII, including the contact name and several other standard fields. Universal Health would like the fields to remain accessible in Salesforce. Which two options does Universal Health have to maintain compliance?
Choose 2 answers.
Options:
A. Implement a custom Apex trigger to automatically encrypt the PII data using the Apex Crypto Class.
B. Update the field type of each of the 12 fields to 'Text (Encrypted)' so that they are encrypted at rest.
C. Enable Salesforce Platform Encryption and select the 12 contact fields to be encrypted.
D. Use an external, third-party encryption service to encrypt PII before it enters Salesforce. |
|
Definition
B. Update the field type of each of the 12 fields to 'Text (Encrypted)' so that they are encrypted at rest.
C. Enable Salesforce Platform Encryption and select the 12 contact fields to be encrypted. |
|
|
Term
Question No. 42 / Out of 60
Question Type: Single Choice
What should the Architect do to ensure Field-Level Security is enforced on a custom Visualforce page using the Standard Lead Controller?
Options:
A. Use the 'With Sharing' keyword on the Standard Lead Controller.
B. Nothing; Field-Level Security will automatically be enforced.
C. Use the {!Schema.sObjectType.Lead.fields.isAccessible()} expression
D. Use the Schema.SObject.Lead.isAccessible() method. |
|
Definition
| B. Nothing; Field-Level Security will automatically be enforced. |
|
|
Term
Question No. 43 / Out of 60
Question Type: Single Choice
The System Administrator at Universal Containers has created two list views called ListV1 and ListV2. One group of users should only see ListV1 and the second group of users should only see ListV2. Two public groups were created to restrict visibility to the respective list views. However, users in both groups can see both list views. What system permission in their profile enabled the users to see all list views?
Options:
A. Manage Custom List Views
B. Manage Private List Views
C. Manage Public List Views
D. Manage Custom Permissions |
|
Definition
| C. Manage Public List Views |
|
|
Term
Question No. 44 / Out of 60
Question Type: Multiple Choice
Universal Containers is implementing a community of High-Volume Community users. Community users should be able to see records associated to their Account or Contact record. The Architect is planning to use a Sharing Set to provide access to the records. When setting up the Sharing Set, certain objects are not available in the list of Available Objects. Which two reasons explain why an object is excluded from the list of Available Objects in a Sharing Set?
Options:
A. The object is a custom object, and therefore not available for a sharing set.
B. The object's Organization-Wide sharing setting is set to Public Read/Write.
C. The object's Organization-Wide sharing setting is set to Private.
D. The custom object does not have a lookup to Accounts or Contacts. |
|
Definition
B. The object's Organization-Wide sharing setting is set to Public Read/Write.
D. The custom object does not have a lookup to Accounts or Contacts. |
|
|
Term
Question No. 45 / Out of 60
Question Type: Single Choice
Universal Containers has a private sharing model on Accounts. Apex Managed Sharing is required to share certain account records with all users who are assigned to a specific Role in the Role Hierarchy. What should be the recommended way for the Architect to implement this?
Options:
A. Create an AccountShare record associated with a public group containing the Users in the Role.
B. Create an AccountShare record associated with each user who is assigned to the Role.
C. Create an AccountShare record associated with the required Role.
D. Create an AccountShare record associated with a public group containing the Role. |
|
Definition
| A. Create an AccountShare record associated with a public group containing the Users in the Role. |
|
|
Term
Question No. 46 / Out of 60
Question Type: Multiple Choice
Universal Containers is Controlled by Parent sharing settings on the Contact object and Public Read Only sharing settings on Account, Opportunity, and Case objects. Which two options can the user see while adding Account team members to the Account?
Options:
A. Case Access
B. Opportunity Access
C. Contact Access
D. Activity Access |
|
Definition
A. Case Access
B. Opportunity Access |
|
|
Term
Question No. 47 / Out of 60
Question Type: Single Choice
Universal Container is creating a custom VF page to allow users to edit contact records. The developer has used an apex: output field for the Phone field on the contact object. What is the expected behavior if a user without FLS accesses the VF page?
Options:
A. The user encounters an error while saving the record
B. The field is automatically removed from the page
C. The output field is visible to the user
D. The user can enter a value into the phone field |
|
Definition
| B. The field is automatically removed from the page |
|
|
Term
Question No. 48 / Out of 60
Question Type: Single Choice
Universal Containers (UC) works with a dealer network to sell their products. There are approximately 5,000 dealers that do business with UC and UC has purchased a Partner Community to interact with each of their dealers on Opportunities. Each dealer is structured so that there is a group of managers who will oversee a larger team of agents. UC would like to set the Organization-Wide Defaults to Private for the Opportunity object, both internally and externally. Within each dealer, there are a few agents called Lead Agents who should be able to see the Opportunities for all of the other Agents at the dealer. What is the optimal solution for an Architect to recommend?
Options:
A. Add a Sharing Set that shares Opportunities with the Lead Agent based on the Lead Agent's Account.
B. Build an Apex Managed Sharing rule that will assign specific Opportunities to Lead Agents.
C. Grant Super User access to the Lead Agents as part of the Community user setup.
D. Create a Sharing Rule to share opportunities to the owner's manager's role and below. |
|
Definition
| C. Grant Super User access to the Lead Agents as part of the Community user setup. |
|
|
Term
Question No. 49 / Out of 60
Question Type: Multiple Choice
At Universal Containers, users should only see Accounts they or their subordinates own. All Accounts with the custom field 'Kay Customer' should be visible to all Senior Account Managers. There is a custom field on the Account record that contains sensitive information and should be hidden from all users, except 3 designated users who require view and edit access. These three users come from different user groups and will change occasionally. Which three platform security features are required to support these requirements with the minimum amount of effort?
Choose 3 answers
Options:
A. Criteria-Based Sharing Rules
B. Owner-Based Sharing Rules
C. Role Hierarchy
D. Apex Managed Sharing
E. Permission Sets |
|
Definition
A. Criteria-Based Sharing Rules
C. Role Hierarchy
E. Permission Sets |
|
|
Term
Question No. 50 / Out of 60
Question Type: Single Choice
Universal Containers created a custom object called Defect and would like to enable the Sharing button on the Defect page layout to share the records manually with other users in the organization. In which scenario will the Sharing button appear?
Options:
A. The Sharing model is either Private or Public Read only.
B. The Sharing button always appears.
C. The Sharing model is Public Read/Write.
D. The Sharing model is Public Read/Write/Transfer. |
|
Definition
| A. The Sharing model is either Private or Public Read only. |
|
|
Term
Question No. 51 / Out of 60
Question Type: Multiple Choice
Universal Containers has a custom object to maintain Job information with a private sharing model. The Delivery Group is distributed through the Role Hierarchy based on geography. As the Delivery group often collaborates on Jobs, all users in the Delivery profile require View access to all Job records. In special cases, the Delivery user who owns a job must be able to grant a Product Development user access to a Job record. Which two platform features can be used to support these requirements?
Choose 2 answers
Options:
A. Criteria-based Sharing Rules
B. 'View All' Profile settings
C. Owner-based Sharing Rules
D. Manual Sharing |
|
Definition
B. 'View All' Profile settings
D. Manual Sharing |
|
|
Term
Question No. 52 / Out of 60
Question Type: Multiple Choice
Universal Containers would like to create a custom team solution that can be used on a custom Loan object. The following requirements must be met:
The Loan custom object should be set to Private in the Org-Wide Defaults.
Any user added to the Custom Team object should have Read Only access to the corresponding Loan record. If the Custom Team record is marked as 'Primary' then the corresponding user should have Read/Edit access to the corresponding Loan record.
Which two methods will allow the Architect to meet the requirements?
Choose 2 answers.
Options:
A. Create a custom trigger on the Custom Team object that inserts or updates records in the Loan_share object.
B. Create a criteria-based sharing rule on the Loan object that will share the Loan record with the appropriate user in the Custom Team object.
C. Create Apex Sharing Reasons on the Loan object to identify the reason the Loan record was shared.
D. Create an owner-based sharing rule on the Custom Team object that will share the Loan record with the owner of the Custom Team record. |
|
Definition
B. Create a criteria-based sharing rule on the Loan object that will share the Loan record with the appropriate user in the Custom Team object.
D. Create an owner-based sharing rule on the Custom Team object that will share the Loan record with the owner of the Custom Team record. |
|
|
Term
Question No. 53 / Out of 60
Question Type: Multiple Choice
Which three advanced tools can Salesforce enable for large-scale role hierarchy realignments in organizations with large data volumes?
Choose 3 answers.
Options:
A. Partitioning by Divisions
B. Granular Locking
C. Parallel Sharing Rule Recalculation
D. Deferred Sharing Calculation
E. Skinny Table Indexing |
|
Definition
A. Partitioning by Divisions
D. Deferred Sharing Calculation
E. Skinny Table Indexing |
|
|
Term
Question No. 54 / Out of 60
Question Type: Single Choice
Universal Containers has a custom Job object with a private sharing model. Based on the size and location of the Job, different teams must have access to edit the specific Job record. To support this requirement, Apex Managed Sharing has been implemented to share records with the required users. Since the teams change frequently, managed sharing recalculations need to be manually run frequently. What can the Architect do to optimize this process?
Options:
A. Change the sharing model on the Job object to Public Read/Write.
B. Create a scheduled job to automatically run the sharing recalculations on a nightly basis.
C. Create public groups for each team, and share the jobs with the groups instead of users.
D. Create a custom Visualforce page to edit the jobs and specify Without Sharing on the controller. |
|
Definition
| C. Create public groups for each team, and share the jobs with the groups instead of users. |
|
|
Term
Question No. 55 / Out of 60
Question Type: Multiple Choice
Which two options can help mitigate the risks of import failures associated with large-volume bulk data loads?
Choose 2 answers.
Options:
A. Minimize user group hierarchy.
B. Defer Sharing Calculation.
C. Increase batch size.
D. Group records by ParentID within a batch. |
|
Definition
B. Defer Sharing Calculation.
D. Group records by ParentID within a batch. |
|
|
Term
Question No. 56 / Out of 60
Question Type: Single Choice
Universal Containers has just deployed a change to its role hierarchy. A manager is reporting that their staff can now see Accounts that they do not own and should not have access to. How should the Architect troubleshoot?
Options:
A. While logged in as the System Administrator, use the Field Accessibility Viewer to view a matrix of who has access to Accounts.
B. While logged in as one of the Staff members, navigate to a sample account and use the Sharing button to determine who has access.
C. While logged in as one of the Staff members, navigate to their user record and inspect their profile and role membership.
D. While logged in as the System Administrator, use the Field Accessibility Viewer to view a matrix of who has access to Accounts. |
|
Definition
| B. While logged in as one of the Staff members, navigate to a sample account and use the Sharing button to determine who has access. |
|
|
Term
Question No. 57 / Out of 60
Question Type: Multiple Choice
A dummy user at Universal Containers owns more than 10,000 lead records. The system assigned all these leads to a dummy user. This is causing performance issues whenever role hierarchy changes. Which two options should be recommended to improve performance?
Choose 2 answers.
Options:
A. Assign ownership to a small number of users.
B. Add the dummy user into a public group.
C. Add the dummy user to the bottom of the role hierarchy.
D. Do not assign a role to the dummy user. |
|
Definition
A. Assign ownership to a small number of users.
D. Do not assign a role to the dummy user. |
|
|
Term
Question No. 58 / Out of 60
Question Type: Single Choice
Universal Containers has junction object called 'Job Production Facility', with 2 master-detail relationships to the Job and Production Facility custom objects. Both master records have a private sharing model.
What statement is true if a user's profile allows access (Create/Read) to the Job, but no access to the Production Facility Object?
Options:
A. The user will be granted read access to the Production Facility record
B. The user will see the junction object and the link to the Production Facility.
C. The user will see the junction object but not the link to the Production Facility.
D. The user will not be able to see the junction object records or the field values. |
|
Definition
| D. The user will not be able to see the junction object records or the field values. |
|
|
Term
Question No. 59 / Out of 60
Question Type: Single Choice
Which users have access to Opportunity records owned by an external user, assuming no other changes to the sharing model have been implemented?
Options:
A. The record owner and any user above the external user in the role hierarchy.
B. The record owner only.
C. The record owner and any user below the external user in the role hierarchy.
D. The record owner and all internal users. |
|
Definition
| A. The record owner and any user above the external user in the role hierarchy. |
|
|
Term
Question No. 60 / Out of 60
Question Type: Multiple Choice
A user at Universal Containers would like to give access to a Report folder to someone else in the organization.
Which two access permissions should the user have to support this requirement?
Choose 2 answers.
Options:
A. The 'Viewer' Report folder permission
B. The 'Editor' Report folder permission.
C. The 'Manage Reports in Public Folders' Profile permission.
D. The 'Manager' Report folder permission. |
|
Definition
C. The 'Manage Reports in Public Folders' Profile permission.
D. The 'Manager' Report folder permission. |
|
|
