Salesforce Security and Privacy Accredited Professional Exam Practice Test Instant Access

Question 1

A customer prefers to generate an encryption key for Salesforce to use. They prefer to generate it manually, once a year.

What key management capability should the admin advise them to use?

AExport the tenant secret

BImplement a custom Apex key generation class

CBring your own key, plus opt-out of key derivation

DUpload your own tenant secret

Answer : A

Question 2

What are two benefits of conducting a user inventory prior to implementing MFA?

AIdentify users who should be deactivated

BIdentify logical groups of users for a phased rollout

CIdentify users who don't have the correct permissions

DIdentify admins and other privileged users

Answer : B, D

Question 3

Which category is NOT covered by Security Center?

APermissions

BEvent Monitoring

CAuthentication

DConfiguration

Answer : B

Question 4

What happens to metrics in the parent tenant when a child tenant is disconnected?

AThe data is retained in the parent tenant, but not viewable in the app.

BMetrics for the tenant are deleted immediately.

CMetrics for the tenant are deleted during the next update.

DThe user may see incomplete data in the app

Answer : A

Question 5

What are the two typical human emotions/reactions cyber criminals exploit to steal credentials and infiltrate your network?

ACuriosity

BSurprise

CFear

DRewards

Answer : A, C

Question 6

For products built on the Salesforce Platform, which three tools can admins use to monitor MFA usage patterns?

AIdentity Verification Methods report

BLogin History page in Setup

CMulti-Factor Authentication Dashboard App

DMulti-Factor Authentication Assistant

ECustom list view of Users in Setup

Answer : A, C, E

Question 7

The Admin wants to make Salesforce applications more secure. Which set of security settings should be enabled to achieve this?

AEnable ClickJack protection, Lightning Lockdown, Enable User Certificates

BEnable ClickJack protection, Health Check, Enable User Certificates

CEnable Click Jack protection, Require HTTPS, Enable Cross-Site Scripting (XSS) Protection

DRun Health Check, Require HTTPS, Salesforce Shield

Answer : C