SHARING-AND-VISIBILITY-ARCHITECT Online Practice Questions and Answers

Universal Containers (UC) has a mostly private organization-wide default (OWD), as it is a core principle of UC to respect client data privacy. UC has implemented complex processes for granting access to Opportunity data. A few key members of the Sales Reporting team need to always be able to see, but not change, Opportunity data for all Opportunities.

What should an architect recommend as an approach to meet these requirements?

A. Create a Permission Set that grants "View All Data" Permission.

B. Make Opportunity OWD read-only.

C. Give "View All Data" Permission to the Sales Reporting Profile.

D. Create a Permission Set that grants "View All" permission for Opportunity.

Universal Containers would like to control access to records and objects according to the following business requirements:?Sales users can view all Account records but only edit their own records.

1.

Sales managers view all Account records but only edit records of the team.

2.

Service users can view all Account records that are not marked with a RecordType of Prospect. Which organization-wide default configuration should a Salesforce architect recommend to fulfill these requirements?

A. Public Read Write

B. Private

C. Public tad Only

D. Public Read/Transfer

Universal Containers has developed Apex code to manually create Account Share records to grant specific users access to individual Accounts. What must the Architect do to ensure the Account Share records are not deleted when the owner of the Account is changed?

A. Create the share records and set the RowCause to a custom Apex Sharing Reason

B. Create the share records in a class with the "Without Sharing" keyword

C. Create the share records with the Delete on Owner Change field set to false

D. Create the share records and set the RowCause to Manual

The architect at Universal Containers would like to prevent users from editing encrypted fields. Assuming no customizations are implemented, which two options should the Architect choose to support the requirement? Choose 2 answers

A. Validation Rules

B. Page Layout settings

C. Apex Triggers

D. Workflow Rules

When writing test methods, what functionality is verified by the system method "runAs()"?

A. Enforcement of a user's record sharing.

B. Enforcement of user permissions.

C. Enforcement of a user's field-level security.

D. Enforcement of user's public group assignments.

Universal Containers does not want the Users in the Custom Sales Department Profile to be able to delete Opportunities. How would the Architect prevent a certain set of users from deleting Opportunities?

A. Remove the Delete button from the Opportunity Page Layout and Record Type settings.

B. Create a Validation Rule that checks the User's Profile before allowing the Is Deleted flag to be set to True.

C. Override the Standard button with a Visualforce Page that warns them that they do not have permission to delete.

D. Remove the "Opportunity Delete" Permission from the Sales Team's User Profile in the Object Permissions.

Universal Containers has recently activated an integration that synchronizes customer information and orders into their CRM of choice: Salesforce.com. One of their largest customers, United Air, has over 12,000 unique contacts. Since the integration was activated, sales reps are having trouble adding contacts to the United Air account. When a sales rep adds a contact, they get the following error message:UNABLE_TO_LOCK_ROW, This issue seems to affect the United Air account and several other large customers. The sales rep can usually save the contact by trying again later in the evening. What should the Architect recommend as a possible solution?

A. Add a role-based sharing rule so all sales team members have Read/Write access to contacts.

B. Remove sharing rules and replace them with Apex sharing for Unite Air and the other large accounts.

C. Implement an account hierarchy and redistribute the contacts evenly under the child accounts.

D. Create a permission set for the sales team to grant them Read/Write access to all account fields.

Universal Containers has a Private Sharing Model and restrictive data access settings in place. The data governance team is planning to deploy a master data management tool that will need write access to all system data, and the Architect has been asked to prepare a Data Governance User Profile that has full access to all data regardless of Sharing and CRUD Settings. What is the optimal way to enable this requirement?

A. Ensure the profile has the "Modify All Data permission enabled

B. Create a Sharing Rule for required Objects, on an API Only profile

C. Create an All Data Access app as a default for this Profile.

D. Enable the "Edit Read -Only Fields" permission for this Profile.

Universal Containers has the following requirements:

1.

The Commercial Account and Consumer Account support departments should not collaborate.

2.

The Commercial and Consumer sales users roll up to the same VP of Sales, but there should be no collaboration between sales departments.

3.

The Commercial sales department should share its customers with the Commercial support department.

4.

The Consumer sales department shares its customers with the Consumer support department.

5.

The Commercial and Consumer support departments roll up to the same Support Director.

6.

The sales departments will remain the Account Owner for the Accounts that they sell to.

What is the recommended Org-Wide Sharing Default for Accounts, and how would the

Architect enable proper Commercial and Consumer Sales to Support Account Sharing for this scenario?

A. Private Account Sharing with Sharing Rules from Commercial Sales Role(s) to Consumer Support Role(s) and Consumer Sales Role(s) to Commercial Support Role(s).

B. Private Account Sharing with Sharing Rules from Commercial support Role(s) to Commercial Support Role(s) and Consumer Sales Role(s) to Consumer Support Role(s).

C. Read-Only Account Sharing with Sharing Rules from Commercial Sales Role(s) to Consumer Support Group(s) and Consumer Sales Role(s) to Commercial Support Groups(s).

D. Private Account Sharing with Sharing Rules from Commercial Sales Group(s) to Commercial Support Groups(s) and Consumer Sales Group(s) to Consumer Support Group(s).

Universal Containers has requirement for the Architect to develop Apex Managed Sharing code for the custom Job object. The sharing settings for the Job object are set to Private.

When assigning access level for the record, which two lines of code will cause a DML exception on insert to the database?

Choose 2 answers

A. Objectname.AccessLevel='Edit'

B. Objectname.AccessLevel='All'

C. Objectname.AccessLevel='None'

D. Objectname.AccessLevel='Read'