Topic 1: Exam Pool A
Universal containers has a customer that meets criteria for two Enterprise Territory Management territories (Portugal and Southern Europe). What is necessary to assign opportunities to a territory for this account?
A. Create a process builder process that updates the territory field on the opportunity
B. The territory with the highest territory type priority is automatically assigned to the opportunity.
C. Create an Apex class that implements Filter-Based Opportunity Territory Assignment.
D. Create a criteria-based sharing rule on the opportunity to assign it to a territory
Explanation: The territory with the highest territory type priority is automatically assigned to the opportunity when an account meets criteria for multiple territories4. Option A is incorrect, since creating a process builder process to update the territory field on the opportunity would be unnecessary and complex. Option C is incorrect, since creating an Apex class that implements Filter-Based Opportunity Territory Assignment would be an advanced and custom solution that is not required in this scenario. Option D is incorrect, since creating a criteria-based sharing rule on the opportunity to assign it to a territory would not work, as sharing rules do not assign territories5.
An External Object is created to show Invoices from an external accounting system. When viewing the External Object, a user should only access invoice records the user is authorized to see. What two actions are required to achieve the above requirement? Choose 2 answers
A. Setup External Object to use OAuth to connect to the Accounting system.
B. Create an owner based sharing rule to grant visibility to the Invoice object.
C. Restrict access to data in the accounting system.
D. Grant access to the External Object to only the Account Manager profile.
Explanation: The two actions that are required to achieve the requirement are setting up External Object to use OAuth to connect to the Accounting system and restricting access to data in the accounting system. OAuth is an authentication protocol that allows Salesforce to securely access data from an external system without storing the username and password of the external system user3. Restricting access to data in the accounting system is a way to ensure that only authorized users can view the invoice records from the external source. Creating an owner based sharing rule to grant visibility to the Invoice object and granting access to the External Object to only the Account Manager profile are not actions that can ensure that a user only accesses invoice records the user is authorized to see.
Universal Containers (UC) is a non-profit organization and has over 20,000,000 members (donors). The company decided to assign those accounts to Donations Reps based on them regions. Donations Reps ended up owning over 50,000 donors each. The donation reps started to see significant degradation of the system performance. What could be the reason for this problem?
A. TheDonations Reps access to the assigned accounts.
B. Salesforce sharing recalculation kicked off.
C. There is an Account ownership data skew problem.
D. The Account (donor) object OWD is Private
Explanation: There is an Account ownership data skew problem,which could be the reason for this problem. Data skew occurs when a large number of records (more than 10,000) are owned by a single user or belong to a single role. This can cause performance issues when accessing or updating those records, as well as when recalculating sharing rules or changing ownership. In this scenario, since each donation rep owns over 50,000 donor accounts, there is a significant data skew that affects the system performance. Option A is incorrect, since the donation reps access to the assigned accounts is not a problem by itself, but rather a consequence of data skew. Option B is incorrect, since Salesforce sharing recalculation kicked off is not a problem by itself, but rather a consequence of data skew. Option D is incorrect, sincethe Account (donor) object OWD being Private is not a problem by itself, but rather a consequence of data skew.
By default, how many roles are created when the first external user is created on a partner account?
A. 0
B. 3
C. 2
D. 1
Explanation: By default, three roles are created when the first external user is created on a partner account. These roles are Executive, Manager, and User. They form a role hierarchy that determines the level of access to data for the partner users.
Universal Containers (UC) has a mostly private organization-wide default (OWD), as it is a core principle of UC to respect client data privacy. UC has implemented complex processes for granting access to Opportunity data. A few key members of the Sales Reporting team need to always be able to see, but not change, Opportunity data for all Opportunities. What should an architect recommend as an approach to meet these requirements?
A. Create a Permission Set that grants "View All Data" Permission.
B. Make Opportunity OWD read-only.
C. Give "View All Data" Permission to the Sales Reporting Profile.
D. Create a Permission Set that grants "View All" permission for Opportunity.
Explanation: Creating a Permission Set that grants “View All” permission for Opportunity is the best approach to meet the requirements. This will allow the Sales Reporting team to view all Opportunity records without changing their profile or OWD settings. Creating a Permission Set that grants “View All Data” permission would give them access to all data in the org, which is not necessary. Making Opportunity OWD read-only would affect all users in the org, which may not be desirable. Giving “View All Data” permission to the Sales Reporting Profile would also give them access to all data in the org, which is not necessary.
Universal Containers (UC) has created a public group with certain Sales Engineers to help on complex deals and a sharing rule to grant access to these opportunities. Opportunity OWD is private. What is the impact of these sharing settings?
A. Subordinates of Managers who have Sales Engineers in the public group will also have access to these records.
B. Sales Engineers that have a similar role of the Sales Engineers of the public group will also have access to these records.
C. Sales Engineers Managers and their managers in the role hierarchy will also have access to these records.
D. Sales Engineers direct reports will also have access to these records.
Explanation: The impact of these sharing settings is that Sales Engineers Managers and their managers in the role hierarchy will also have access to these records. This is because sharing rules extend access to users in public groups, roles, or territories. The access granted by a sharing rule is inherited by users above those users in the role hierarchy1. Subordinates of Managers who have Sales Engineers in the public group, Sales Engineers that have a similar role of the Sales Engineers of the public group, and Sales Engineers direct reports will not have access to these records unless they are explicitly granted by other means.
A custom ServiceFeedback object is used to collect partner feedback. ServiceFeedback records should be available to all internal employees. The OWD is set to Private for external users so partners cannot see feedback from other partner users. How can the Architect give access to all internal employees?
A. Create a trigger on ServiceFeedback to change ownership to an internal employee.
B. Ensure all the internal users are above the partners in the role hierarchy
C. Create an Owner based sharing rule for all ServiceFeedback records owned by Partners.
D. Set OWD, for Internal Users to Public Read Only.
Explanation: Setting the OWD for internal users to Public Read Only is the simplest and most efficient way to give access to all internal employees to the ServiceFeedback object. Option A is incorrect, since creating a trigger on ServiceFeedback to change ownership to an internal employee would be complicated and affect the dataquality. Option B is incorrect, since ensuring all the internal users are above the partners in the role hierarchy would not work, as the role hierarchy does not apply to partner users. Option C is incorrect, since creating an owner-based sharing rule for all ServiceFeedback records owned by partners would be redundant and inefficient.
Universal containers (UC)service reps are assigned to a profile which ha View All in Case object (Private OWD). To make sure service reps have access to all relevant information to attend to customer requests, Which two details should leasable force Architects consider? (Choose 2 answers)
A. Service reps will be able to access all UC contact records if they are controlled by parent.
B. Service reps will not be able to access all UC contact records if they are controlled by parent.
C. Service rep swill be able to access all the UC Account records due to Implicit Sharing.
D. Service reps will not be able to access all the UC Account records because Account OWD is private.
Explanation: Service reps will not be able to access all UC contact records if they are controlled by parent and service reps will not be able to access all UC account records because account OWD is private are two details that Salesforce Architects should consider in this scenario. Since service reps are assigned to a profile which has View All in Case object (Private OWD), they can access all case records regardless of ownership or sharing rules. However, this does not grant them access to related contact or account records, unless they have View All or Modify All permissions on those objects as well. If contact records are controlled by parent (account), their sharing settings will depend on the account OWD and sharing rules. If account OWD is private, service reps will only be able to access account records that they own or are shared with them. Implicit sharing does not apply to internal users. Option A and C are incorrect, since service reps will not be able to access all UC contact or account records due to the reasons explained above.
Universal Containers (UC) has recently changed its internal policy to follow market regulations and create an internal team to manage the collection process. Only this team should have access to Invoke records. currently, invoke is a child in a Master-Detail relationship to Account. Although related lists have been removed from the page layouts, some profiles stills have access to the invoice object. Which approach should an architect recommend to fix this problem?
A. Create a new Profile with no access to the Invoice object and assign it to all unauthorized users
B. Create a Permission Set with No Access to the Invoice object and assign it to unauthorized users
C. Replace Account and Invoke Master Detail Relationship by a Lookup and remove Invoice Access from the unauthorized profiles
D. Change the Invoke organization-wide default from Controlled by Parent to Private and remove invoke access from the unauthorized
Explanation: Master-Detail relationships enforce the sharing and security settings of the parent object on the child object. This means that if a user has access to an Account record, they will also have access to any Invoice records that are related to that Account. To prevent this, the architect can recommend replacing the Master-Detail relationship with a Lookup relationship, which allows the child object to have its own sharing and security settings independent of the parent object. Then, the architect can remove the Invoice access from the unauthorized profiles or use other mechanisms such as sharing rules or permission sets to restrict or grant access to the Invoice object. Therefore, the answer C is correct and the other options are incorrect.
Universal Containers (UC) has 200 distributors that use Partner Community Licenses. Partners cannot see each other’s data, but UC is also trying togive more visibility to certain individuals at a distributor. Which scalable solution would an architect recommend that will give users in the partner manager role access to all Case and Container records owned byother partner managers and partner users (but not the partner executive) at the same distributor?
A. Create Sharing sets
B. Create a permission set granting the View All permission to Case and Container records.
C. Give Super User permission to the partner manager users.
D. Create ownership-based sharing rules for your distributors.
Explanation: Ownership-based sharing rules are a way to grant access to records based on the record owner’s role or public group membership. Ownership-based sharing rules can be used to share records with Partner Community users, who are not supported by sharing sets. In this case, ownership-based sharing rules can be used to share Case and Container records owned by partner managers and partner users with other partner managers at the same distributor. Therefore, the answer D is correct and the other options are incorrect .
| Page 6 out of 24 Pages |
| Previous |
Copyright © - All Rights Reserved