Salesforce Security-and-Privacy-Accredited-Professional Exam Practice Test Instant Access

Question 1

A customer prefers to generate an encryption key for Salesforce to use. They prefer to generate it manually, once a year.

What key management capability should the admin advise them to use?

AExport the tenant secret

BImplement a custom Apex key generation class

CBring your own key, plus opt-out of key derivation

DUpload your own tenant secret

Answer : A

Question 2

What do Right to be Forgotten policies automate?

AHow to compile and send PII to customers.

BHow PII is anonymized

CHow and when PII is deleted.

DHow PII is stored and archived

Answer : C

Question 3

Which three options can be controlled through password policies in Salesforce?

APassword expiration

BPassword complexity

CPassword length

DPassword with special characters

EDisallowed passwords

Answer : A, B, C

Question 4

For products built on the Salesforce Platform, how is MFA enabled?

AOn the Identity Verification page in Setup, select the Enable Multi-Factor Authentication checkbox

BCreate a permission set that includes the 'Multi-Factor Authentication for User Interface Logins'
permission, then apply the permission set to desired users

CGMFA is enabled by default, each user simply registers a verification method from their personal settings

DClick the Enable button in the Launch stage of the Multi-Factor Authentication Assistant

Answer : B

Question 5

If a user loses their verification method, what are three of the recommended steps an admin should take?

ADisconnect the lost verification method

BGenerate a temporary verification code so the user can log in

CAsk the user to submit a lost verification method report before proceeding with any other steps Post about the incident to all Salesforce users as a learning opportunity

DMonitor the user's account activity for suspicious activity

Answer : A, B, D

Question 6

What is the primary function of the Consent Event Stream?

AIt provides one stream to receive notifications about changes to consent fields or contact Information on all core objects.

BIt stores and manages the data related to your customer's communication subscriptions, such as
newsletters or appointment reminders.

CIt stores the name, version, and effective dates of authorization forms

DIt tracks customers' requests for updates to their data privacy preferences

Answer : A

Question 7

What will the user see in the Salesforce user interface when they view a page that includes the field on it?

AThe field label followed by a message indicating that the field value is encrypted

BThe field label followed by the unencrypted field value

CThe field label followed by eight asterisks

DThe field label followed by 256 characters of cipher text

Answer : B

Salesforce Security and Privacy Accredited Professional Exam Practice Test