Salesforce Sharing and Visibility Architect Exam Practice Test Instant Access

Question 1

Sales operations at Universal Containers (UC) has created Public Reports and Dashboards folders for sales managers. Sales operations and salts managers' report to the VP of Sates. Sales operations currently spends a few hours each month updating users mat should have access to edit reports and dashboards in these folders.

How should UC grant access to sales managers to automate access to these Public Reports and Dashboard folder?

AShare the folders with the Sales Managers profile.

BShare the folders with a 'Sales Managers' Public
Group.

CShare the folders with the lowest rates in the Role Hierarchy; superiors will get access automatically.

Answer : A

Question 2

Besides their own team accounts, sales managers at Universal Containers need to have

READ access to all accounts of the same segment in other countries. Role hierarchy was

implemented accordingly (based on countries), but a sales manager in the US is complaining

that he cannot view account records of the same segment in Canad

a. What should be done

to grant access in a proper way?

ACreate an owner-based sharing rule to grant access to account records that have the
same segment to all sales manager roles.

BChange the role hierarchy and put all of the sales managers in the US and Canada in
the same role.

CCreate criteria-based sharing rules to grant access to account records that have the
same segment to all sales manager roles.

DCreate a public group and include all accounts of the same segment and grant access
through a permission set.

EOwner-Based Sharing Rules
An owner-based sharing rule opens access to records owned by certain users. For example, a
company's sales managers need to see opportunities owned by sales managers in a different
region. The U.S. sales manager could give the APAC sales manager access to the opportunities
owned by the U.S. team using owner-based sharing.
https://help.salesforce.com/articleView?id=security_sharing_rule_types.htm&type=5

Answer : A

Question 3

Universal Containers (UC) service reps are assigned to a profile which has ''View All'' in Case

object (Private OWD). To make sure service reps have access to all relevant information to

attend to customer requests, which two details should a salesforce Architects consider?

Choose 2 answers:

AService reps will be able to access all UC contact records if they are controlled by parent.

BService reps will not be able to access all UC contact records if they are controlled by parent.

CService reps will be able to access all the UC Account records due to Implicit Sharing.

DService reps will not be able to access all the UC Accounts records because Account OWD is private.

Answer : D

How can an architect achieve this?

https://developer.salesforce.com/docs/atlas.en-us.apexcode.meta/apexcode/apex_classes_per

ms_enforcing.htm

Example: To check the field-level read permission of the contact's email field before querying

for this field:

if (Schema.sObjectType.Contact.fields.Email.isAccessible()) {

Contact c = [SELECT Email FROM Contact WHERE Id= :Id];

}

Answer for B -

https://developer.salesforce.com/docs/atlas.en-us.apexcode.meta/apexcode/apex_classes_key

words_sharing.htm

The ''with sharing'' keyword allows you to specify that the sharing rules for the current user are

considered for the class. You have to explicitly set this keyword for the class because Apex code

runs in system context. In system context, Apex code has access to all objects and fields---

object permissions, field-level security, sharing rules aren't applied for the current user. This

strategy ensures that code doesn't fail to run because of hidden fields or objects for a user.

Question 4

What is the security vulnerability in the following code snippet? Value of my Textfield is

ASOQL Injection

BArbitrary Redirects

CCross-Site Scripting

DAccess Control

Answer : C

Question 5

Universal Containers has two custom objects: Job and Job Interview. The Job Interview object has a lookup relationship to Job. Both objects are set to Private in sharing settings. The HR team will own all Job and Job Interview records. They have asked their Salesforce Architect to automatically share the Job Interview when the Interviewer (lookup to user record) has been populated. The interviewer can be from any department. What method should the Architect use to achieve this requirement?

ABuild apex Managed Sharing code to share Job Interview with the Interviewer user

BBuild a criteria-based sharing rule between the Job Interview and the Interviewer

CBuild a standard sharing rule between Job Interview and the Interviewer

DBuild a workflow email notification to notify the interviewer of the record assignment

Answer : A

Question 6

Universal Containers has a private sharing model on Accounts. Apex Managed Sharing is required to share certain account records with all users who are assigned to a specific Role in the Role Hierarchy. What should be the recommended way for the Architect to implement this?

ACreate an AccountShare record associated to a public group containing the Users in the Role.

BCreate an AccountShare record associated to each user who is assigned to the Role.

CCreate an AccountShare record associated to the required Role.

DCreate an AccountShare record associated to a public group containing the Role.

Answer : A

Question 7

Universal Containers has Controlled by Parent sharing settings on the Contact object and Public Read Only sharing settings on Account, Opportunity, and Case objects. Which two options can the user see while adding Account team members to the Account?

ACase Access

BOpportunity Access

CContact Access

DActivity Access

Answer : A, B

Salesforce Sharing and Visibility Architect Salesforce Certified Sharing and Visibility Architect Exam Practice Test