Sharing and Visibility Architect (Summer 2024) Set 1.pdf
Document Details
Uploaded by ToughestFrenchHorn
2024
Tags
Full Transcript
1. To grant Universal Containers sales managers access to shipment records properly, it was necessary to leverage Apex managed sharing. The IT team is worried about improper access to records. What should an architect recommend to mitigate this risk? A. Use runAs system method in test c...
1. To grant Universal Containers sales managers access to shipment records properly, it was necessary to leverage Apex managed sharing. The IT team is worried about improper access to records. What should an architect recommend to mitigate this risk? A. Use runAs system method in test classes to test using different users and profiles. B. Use isAccessible keyword In Apex classes to assure record visibility will be followed. C. Use isShareable keyword in Apex classes to assure record visibility will be followed 2. A banking company wants their customers Date of Birth Field searchable by Banking Reps, but only editable by Customer Support Reps. Which approach is recommended to meet this requirement? A. Set the Fied Level Security for the Date of Birth field to be Visible to Custoner Support Rep Profile, and set the Date of Birth field Visible and Readonly to Banking Rep profile. B. Add Date of Birth fleld to the Search layout of the Contact Object. Modify the Page layout assigned to Customer Support Rep and add Date of Birth fled as Required. C. Create a Validation rule in the Data of Birth field so the rule returns true only when user.profilename matches Customer Support Rep. 3. A custom Invoice object has been created with a master-detail relationship to Account. The accounts receivable (AR) team needs access to invoice records. AR users neither own nor have access to account records. The Account organization-wide default is set to Private. The AR team is unable to find invoices in list views, reports, and Global Search. The architect has been asked to help troubleshoot. What is preventing AR team members from seeing invoices? A. The AR profile does not have Read permission to the Invoice object. B. A sharing rule is missing to share invoices with the AR team. C. A sharing rule is missing to share accounts with the AR team. 4. Universal Containers (UC) operates worldwide, with offices in more than 100 regions in 10 different countries, and has established a very complex Role Hierarchy to control data visibility. In the new fiscal year, UC is planning to reorganize the roles and reassign account owners. Which feature should an architect recommend to avoid problems with this operation? A. Deferred Sharing Recalculation B. Partition data using Divisions C. Skinny table 5. An architect has a requirement to create a criteria-based sharing rule based on the customer Social Security Number. However, when setting up the rule in Contact Sharing, the field is not shown on the list of available fields. What is causing this issue? A. The architect's profile does not have Field-Level Security for this field. B. The field has been configured for encryption. C. The architect does not have permission to Compliance fields. 6. Universal Containers (UC) uses a custom Lightning component with an Apex class to display shipment information (custom object, Private organization-wide default). UC sales managers are complaining about two important points: Shipment records that belong to their teams can be seen by other users. Shipment amount should be visible only by managers, but sales reps are able to view it. Which feature did the development team miss that is causing the problems? A. Use runAs in test class to enforce user permissions and field-level permissions. B. Use With Sharing keyword in Apex classes to enforce sharing rules evaluation. C. Use isShareable keyword in Apex classes to assure record visibility. 7. Universal Containers (UC) has a partner community for its 200 distributors. UC customer accounts are assigned an individual distributor. The organization-wide default setting for the custom Delivery object is Private. How should an architect advise UC to grant all users at a distributor access to delivery records for all customers assigned to a particular distributor? A. Create a criteria-based sharing rule that shares dellvery records matching the Distributor to users of a Public Group created for the distributor. B. Create a criteria-based sharing rule that shares delivery records matching a distributor to the Distributor role in the Role Hierarchy. C. Create a Sharing Set for the Distributor profile to grant access to the Delivery object. 8. Universal Containers (UC) delivers training and courses to students and companies. UC is implementing a Salesforce Customer Community for its students granting them a Customer Community license. As part of the community requirements, UC asked to give students access to cases that are related to their account in the UC community. What is the optimum sharing technique to achieve these requirements? A. Create a sharing rule to share cases with the students. B. Use Apex sharing to share cases with the students. C. Create a sharing set to share cases with the students. 9. Universal Containers (UC) has created a custom Invoice object. Standard sales users at UC can see the records in search layout, but when they click to view the detail, only record name, created date, and last modified date are shown. When the system admin accesses it, he or s h e sees the full record detail with many more data fields. What is the likely cause of this issue? A. The Sales Users profile does not have access to the remaining fields. B. The page layout assigned to Sales User profile has only Read-Only access to the fields. C. Role-based sharing rule is missing and should be added for the sales user's role to grant access to the fields. 10. Universal Containers has implemented Customer Community with Customer Community Plus licenses for its distributors. Retail distributors have part-time agents who work for multiple distributors. Those agents should have access to other distributor accounts as well. What should be configured to grant agents access to different distributor accounts? A. Use Apex sharing to share distributor accounts with agents using the Account_Share table. B. Create a sharing set to share distributor accounts with agents using account contact relationship. C. Create sharing rules to share distributor accounts with agents. 11. What should an architect recommend to make sure that users that gained access to a custom object record through Apex managed sharing do not lose access to it when its owner is changed? A. Use "With Sharing '' keyword to make sure record visibility will be considered. B. Create a specific Apex Sharing Reason for the custom object. C. Create a new record in _Share object with RowCause "Manual" 12. Sales operations at Universal Containers (UC) wants to create list views to filter opportunities for certain geographies. OHow shouldCU hide list views that are not relevant to an individual user since there will be more than 505 list views? A. Share the list views with the appropriate individual users. B. Share the list views with the appropriate public group. C. Share the list views with the appropriate queue. 13. Universal Containers uses Standard WorkOrder object to track various work orders sent to field agents. Currently, the WorkOrder object has more than 400 fields. There are eight different types of work order processes established. The Director of Customer Service wants to ensure that field agents gets to see only required information specific to the WorkOrder type they are addressing. Which option is recommended to implement this requirement? A. Use a custom LWC to override the view action of WorkOrder with custom metadata type defining relevant fields per WorkOrder type B. Use Dynamic form to add different page sections and control visibility of sections by Work Order RecordType value. C. Use different page layouts per work order type with different sections representing key information about the specific work order type. 14. A Consulting company uses the Salesforce mobile app for its field consultants and uses Case object to track customer specific consulting done by field consultants. The company also has a large number of customer service representatives who takes calls from customers on company issued desktops and uses case object to track customer issues and grievances. The company would like to capture images of customer site captured by field consultants while they are editing the case record during customer site visit. The Director of TI wants to minimize customization and promote reusability of code artifacts wherever possible. What recommendations should an architect give to the company to implement the image capture requirement, while ensuring the customer that the service rep can continue to use the same lightning pages they were trained to use? A. Use Lightning Component as an override for "Edit" action on mobile view allowing Image capture feature. No Change required for desktop users. B. Use Lightning Component as an override for "Edit" action on lightning experience allowing image capture feature. Detect the form factor of the device and redirect the user to the default not overridden view. C. Create a separate button "Edit in Mobile", which opens a custom lightning component that will allow field consultants to add an image. No change required for desktop users. 15. Mary is Joe's manager in the Role Hierarchy. The organization-wide default for a custom Invoice object is Public Read-Only, and Mary's profile is not granted the Read permission for the Invoice object. Which action can Mary take on Joe's invoice records? A. Read/Write B. None C. View Only 16. Universal Containers (UC) has a team that analyzes customer orders looking for fraud. This team needs access to Invoice records (custom object, Private organization-wide default). UC has complex rules to control users' access. The architect recommended using Apex managed sharing to meet these requirements. Which recommendation should a developer consider when implementing the changes? A. Use "Without Sharing" keyword to make sure record visiblity wil be considered. B. Use "With Sharing" keyword to enforce Field-Level Security. C. Use runAs system method to test different users accessing these records. 17. Universal Containers would like to control access to records and objects according to the following business requirements: Sales users can view all account records but only edit their own records. Sales managers can view all account records but only edit records of their team. Service users can view all account records that are not marked with a RecordType of Prospect. Which organization-wide default configuration should an architect recommend to fulfill these requirements? A. Public Read/Transfer B. Public Read Write C. Private 18. Sales reps at Universal Containers (UC) complain about the manual activities they need to perform in order to grant access to supporting internal users (legal, engineering, finance, etc.) for customer records when they need help. In general, the sales reps involved ni the deals will not change. How should an architect help UC improve sales reps' productivity? A. Leverage default Account team, B. Create a permission set with View All Data and assign to supporting users. C. Create a criteria-based sharing rule to grant access to other users. 19. Universal Containers implemented Sales Cloud and requested that only certain branch staff trained to sell high-risk products can create opportunities for high-risk products. How should an architect allow only specific branch staff to sell high-risk products? A. Set the price book OWD to Vlew Only and share the (High Risk) price book with the trained staff via manual sharing. B. Set the price book organization-wide default (OWD) to View Only and share the price book (High Risk) with the trained staff. C. Set the price book OWD ot View Only and share the (High Risk) price book with the trained staff via a sharing rule. 20. Universal Containers has expanded to sell virtual containers for data storage. Virtual container work orders are provisioned immediately by the system and therefore cannot be changed by a sales rep. What is an optimal approach to implement these requirements? A. Remove the Work Order Edit permission from the Sales Representative profile. B. Implement a sharing rule that changes access for all Work Orders to Read. C. Change the Record Type/Page Layout assignment for Work Orders to Read-Only. 21. Universal Containers (UC) is a non-profit organization with more than 20,000,000 members (donors). UC decided to assign those accounts to donations reps based on their regions. Donations reps ended up owning more than 50,000 donors each. The donation reps started to see significant degradation of the system performance. What is the reason for this problem? A. There is an Account ownership data skew problem. B. The donations reps' access to the assigned accounts is wrong C. Salesforce sharing recalculation kicked off. 22. Customer complaints for bad interactions with a customer support agent are logged as Cases and assigned to a human resources representative. The agent of the complaint should not see the case, but their manager should. How is this accomplished? A. Trigger on Case to lookup and share to the manager of an Assigned Agent custom field (the subject of the complaint) using Apex Managed Sharing. B. Case is owned by the subject of the complaint, so their manager in the role hierarchy can access the record. CRED permission are removed on Case so the agent cannot read the c a s e record. C. Criteria based Sharing Rule on Case that shares to the Role Manager and above when a custom field Assigned Agent (subject of the complaint) is not blank. 23. Which advanced tool should Salesforce enable for large-scale Role Hierarchy realignments? A. Skinny Table Indexing B. Granular Locking C. Partitioning by Divisions 24. Universal Containers (UC) delivers training in 500 different regions. The UC operations users team manages course setup, scheduling, and trainer setup. The team members work at a regional level and report to an operations manager. The operations manager requested access to edit ALL scheduled courses owned by the operation users team. How should this be achieved? A. The operations manager will get access to the scheduled courses by creating an ownership-based sharing rule and share the scheduled courses with the operations manager. B. The operations manager will get access to the scheduled courses by creating a public group, and add the operations manager and the operations users team to the public group. C. The operations manager will get access to the scheduled courses owned by the operations users team defined in the Role Hierarchy. 25. If a Case requires involvement from one of the Legal team, the Case owner adds one of the corporate lawyers to the Legal SME field o n the case. Since cases are private, how can we grant a lawyer access to a specific case when their assistance is needed? A. Use Apex Managed sharing in a case Trigger that shares the record to the user identified in the Legal SME field. B. Create an Criteria Based Sharing Rule that shares to the Corporate Legal Team Role when the "legal assistance needed?" field is checked. C. Create an Criteria Based Sharing Rulethat shares to the Legal Public Group when the "legal assistance needed?" field is checked. 26. Universal Containers uses 75,000 distributors that have close to 1 million total users. Distributors need to use the community to see closing opportunities assigned to their distributor for delivery. Which license recommendation will meet distributor needs? A. Partner Community B. Customer Community C. Customer Community Plus 27. Which community function is impacted by having the Site User Visibility turned off in Sharing Settings? A. Updating their user profile. B. Searching for other external users. C. Searching for internal users. 28. In order to allow community users to collaborate on Opportunities, which license type must the users be given? A. Customer community B. Partner Community C. Customer Community Plus 29. Universal Containers (UC) requested that branch managers and UC branch staff should only see customers and related information in their geographic location. Which options should be used together to achieve the requirements? A. Configure organization-wide defaults of the Account object and create sharing rules. B. Configure Role Hierarchy and create sharing rules. C. Create the Account Team and add branch manager team members, and configure organization-wide defaults of the Account object. 30. Universal Containers (UC) sales managers are complaining that they cannot access their teams' Shipment records (a custom object). Initially, the admin suggested that this is happening due to a misconfigured Role Hierarchy (Shipment organization-wide default is Private). After investigation, they determined the Role Hierarchy for these users is correct. What is the reason why UC sales managers are unable to see shipment records? A. The Grant Access Using Hierarchies option on Shipment Sharing Settings was Incorrectly disabled by the admin. B. The Role Hierarchy implicit sharing was incorrectly disabled by the admin. C. The Ownership-based sharing rule for Shipment was incorrectly disabled by the admin. 31. A support representative at Universal Containers created a report to view all her open cases that have been created in the past 7 days and saved the report in the "Private Reports" folder. Who can view and run the report? A. The report owner and any users who have been given access to the "My Private Reports" folder B. The report owner C. The report owner and users with the View All Data permission 32. Besides their own team accounts, sales managers at Universal Containers (UC) need Read access to all accounts of the same segment i n other countries. Role Hierarchy was implemented accordingly (based on countries), but a sales manager in the U.S. is complaining that he cannot view account records of the same segment in Canada. What should UC do to grant access properly? A. Change the Role Hierarchy and put all the sales managers in the U.S. and Canada in the same role. B. Create a public group and include all accounts of the same segment, and then grant access with a permission set. C. Create owner-based sharing rule to grant access to account records that have the same segment to all sales manager roles. 33. Universal Containers (UC) wants to reduce the amount of redundant leads entered into the system. UC also wants to ensure that leads are only edited/reassigned by the lead owner. Which organization-wide default (OWD) approach should be recommended to help UC implement these requirements? A. Implement a Public Read-Only OWD on Lead. B. Implement a Private OWD on Lead. C. Implement a Public Read-Only/Transfer OWD on Lead. 34. Who can view a PDF that is uploaded to the Files Home private library by a user? A. Only the user B. The user and users above them in the Role Hierarchy C. The User and users with View All Data permission 35. The corporate identity and access team needs to audit User setup in the Salesforce org. Which permission should be granted to this team so they can perform their audit? A. View All Users B. View All Data C. View permission on the User object 36. An architect from a previous project implemented Platform Shield Encryption for a company. However, based on a recent audit, the company's Privacy Team identified three additional fields in their Account Records (Billing Street, Billing City and Phone) that needs to be secure and protected. How should an architect proceed with this new policy change? A. Use Encryption Policy and wait for an email from Salesforce Indicating the field values are encrypted. B. Use Classic Encryption to ensure all fields are protected and contactSalesforce ofr help with encryption verification. C. Use Encryption Policy and contact Salesforce to update the existing records so that their field values are encrypted. 37. Universal Containers (UC) uses a custom Lightning component with an Apex class to display shipment information (custom object, Private organization-wide default). UC sales managers are complaining about two important points: Shipment records that belong to their teams can be seen by other users. Shipment amount should be visible only by managers, but sales reps are able to view it. Which feature did the development team miss that is causing the problems? A. Use IsShareable keyword in Apex classes to assure record visibllity. B. Use runs in test class to enforce user permissions and field-level permissions. C. Use isAccesible() method in Apex classes to check field accessibility. 38. A Company intends bring work from anywhere culture in a bid to improve productivity. Their sellers use a wide variety of devices with different form factors. The company currently uses one page layout to display opportunity record details to the sellers. The Regional Vice President of Sales is complaining about incorrect alignment of data in opportunity records, making it difficult for some sellers. Which steps are recommended to rectify this? A. Use a visualforce override for Opportunity view action, identify the form factor onLoad action and display relevant layouts based on form factors. B. Use a custom LWC override for Opportunity view action, identify form factor onLoad action and display relevant layouts based on form factors. C. Use Dynamic Form to define different field sections applicable for different form factors of devices. 39. Dreamforce presenters need to be able to edit their presentation details (summary, presenter biographies, etc) on a private custom object in Salesforce (Presentation). All presenters for a presentation are captured on a Presenters junction object between Presenter and User. How can this be accomplished? A. Give Editrights to the Presentation record via a Permission set that si given to the Presenters for a record. B. Trigger on Presenter junction object that adds the user to the Sales Team for the Presentation record. C. Trigger on Presenter junction object that uses Apex Managed sharing to add or remove access to the related Presentation record. 40. A junior account manager owns an account and creates a new opportunity to manage a complex deal. She needs the help of the product specialist and solution engineer. Given the size of this deal, she knows the account is likely to be reassigned to a senior account manager in the near future. What is the optimal way for the junior account manager to share the opportunity, given the private sharing model? A. Opportunity Team B. Manual share on the account C. Manual share on the opportunity 41. Universal Containers (UC) would like to store an encryption key within Salesforce for use in Apex code, but it does not want users to b e able to see this confidential key. Users require the view setup permission. How can UC securely store the confidential key? A. Create a custom metadata type that stores the encryption key. Make sure that only the admin profile has access to the custom metadata type so that end users cannot access the encryption key. B. Create a protected custom metadata type that stores the encryption key. Package the protected custom metadata type with its associated records in an unlocked package. Install the package in the production org. C. Create a protected custom metadata type that stores the encryption key. Package the protected custom metadata type with its associated records in a managed package. Install the package in the production org. 42. Universal Containers (UC) operates worldwide, with offices in more than 100 regions in 10 different countries, and has established a very complex Role Hierarchy to control data visibility. In the new fiscal year, UC is planning to reorganize the roles and reassign account owners. Which feature should an architect recommend to avoid problems with this operation? A. Parallel Sharing Rule recalculation B. Partition data using Divisions C. skinny table 43. Which option can be selected to share data when creating a sharing rule? A. Users B. Roles C. Profiles 44. Universal Containers (UC) has a custom object to track the internal net promoter score (NPS) for all of its employees. The manager is i n the role above the owner and there are no sharing rules on the object. How should UC ensure that NPS records cannot be accessed by the owner's manager? A. Set organization-wide default to Private and uncheck the Access Using Hierarchies option for the NPS object. B. Remove Create, Read, Edit, and Delete from Manager profiles and permission sets. C. Use Apex sharing to remove NPS object share records for Manager profiles. 45. Universal Containers requested to leverage Lightning Web Components (LWC) to improve support reps' user experience. LWC will be used as a view layer, and Apex classes will have the business logic. Which attention points should the development team consider when implementing this solution? A. Once that Apex runs on system mode, the development team needs to enforce record visibility. B. Create test classes Including runAs to test different users accessing the data. C. Use isShareable, IsEditable, and isCreatable to enforce field permissions. 46. Auser posts a file to the Chatter feed for a record of an object that has a Private organization-wide default. Which statement accurately describes who can view the eiffel by default? A. Only the user who posted the file B. The user who posted the file and users with a shared Chatter post link to the file C. The user who posted the file and users with access to the record 47. Universal Containers (UC) has affiliates who sell containers in countries where UC does not have a local office. UC uses a Partner Community to manage the sales cycle in those countries. One of its affiliates has grown substantially and restructured its internal sales team with the following structure: Sales VP >- Director of Sales >- Sales Manager - > Sales Reps. Sales Reps should not see each others' opportunities, and visibility of deals should open up within a Sales Rep's hierarchy. What is the main problem an architect should address in this situation? A. The Channel Manager role cannot be shared with Partner Community. B. Partner User roles are limited to three levels. C. Partner Community does not support Role Hierarchy. 48. A sales rep (John) at Universal Containers requested to update information in an account record where he has Read-Only access. John requested the Edit access permission from the owner of the record (Paul). Paul manually shared the record with John. Assuming the organization-wide default of the Account object is Public Read-Only, what is the impact in the system? A. New AccountShare record is created. Row Cause is "Manual" and Access Level is "Read/Write". B. New AccountShare record is created. Row Cause is "Owner" and Access Level Is "Full". C. Existing Accountshare record is updated. Row Cause si "Manual" and Access Level is "Read/Write". 49. Which functionality does the system method "runAs()" verify when writing test methods? A. Enforcement of a user's permissions B. Enforcement of a user's record sharing C. Enforcement of a user's Field-Level Security 50. Universal Containers (UC) service reps are assigned to a profile which has View All in the Case obiect (Private organization-wide default). To make sure service reps have access to all relevant information (accounts and contacts) to attend to customer requests, which detail should an architect consider? A. Service reps will NOT be able to access all UC account records because the Account OWD is Private. B. Service reps will be able to access all UC contact records if they are Controlled by Parent. C. Service reps will NOT be able to access all UC contact records if they are Controlled by Parent. 51. A banking company uses a VIP Flag in the Contact Object that they want only Private Banking Reps to see. Which approach recommended met this requirement? A. Change the type of VIP Flag field to a picklist, define a new record type for the Contact Object and make the picklist field available for Editing. B. Define a page layout for Contact Object and add the VIP Flag field for that layout. Remove the VIP Flag field from other layouts. C. Set the Field Level Security for the VIP Flag field so that it is visible to Private Banking Rep Profile. 52. Sales operations at Universal Containers (UC) wants to create list views to filter opportunities for certain geographies. How should UC hide list views that are not relevant to an individual user since there will be more than 50 list views? A. Share the list views with the appropriate public group. B. Share the list views with the appropriate individual users. C. Share the list views with the appropriate queue. 53. Sales operations at Universal Containers (UC) wants to create list views to filter opportunities for certain geographies. How should CU hide list views that are not relevant to an individual user since there will be more than 50 list views? A. Share the list views with the appropriate role and internal subordinates. B. Share the list views with the appropriate queue. C. Share the list views with the appropriate individual users. 54. At Universal Containers, there's a team of auditors distributed throughout the organization that all need access to high-value opportunities. With a Private sharing model, which option should an architect recommend when designing a solution for this requirement? A. Put the auditors at the highest level of the Role Hierarchy. B. Add the auditors to the default Opportunity Team. C. Create a public group and assign the auditors to the group. 55. Sales executives at Universal Containers (UC) want to create list views to filter opportunities for large at-risk opportunities. These list views should only be available to certain executives who specialize in closing problematic deals. What should UC do to solve this requirement? A. Share The list views with the appropriate role in the Role Hierarchy. B. Share the list views with the appropriate Public Group. C. share the list views with the appropriate individual users. 56. Universal Containers' organization wide-defaults model is Private for the Account object. A sales rep owns two opportunities in one Account. The Sales Rep profile has Create/Edit access to opportunity records. Which level of access will the sales rep have to the related Account record? A. No access B. Read access C. Read/Create/Edit access 57. Universal Containers (UC) is in a legal dispute regarding several orders. UC has found out these records were removed from the system. The VP of Sales has asked to ensure this cannot happen in the future. Which approach should meet this requirement? A. Change the Record Type/Page Layout assignment for orders to be Read-Only. B. Remove the Delete button from the Order Page Layout. C. Remove Order Delete permission from profiles and permission sets. 58. Universal Containers has selected a small and diverse group of users to review inactive accounts. Given the Private sharing model, a public group was created and made available to this group of users. A sharing rule was created to make inactive accounts visible to the public group. However, some of these users are reporting they do not see any of the accounts that were shared with the public group. What is the underlying issue for these users? A. The page layout assigned to these users is different than the Account owner. B. The users are in profiles that have no access to the Account object. C. The accounts are owned by users higher ni the RoleHierarchy. 59. The sales managers at Universal Containers requested their teams to define each user's role on their accounts in order to provide an easy way to establish accountability and collaboration. Sales managers also requested that sales associates should only get the following permissions: 1. Read access to the accounts. 2. Read access to cases related to the accounts. 3. No access to deals related to the accounts. The sales associates may be granted access to opportunities when needed. Assuming the overall sharing model of the organization is Private and no sharing rules are configured on the Account object, how should an architect achieve these requirements? A. Use Account teams to define access to accounts as well as opportunities and cases related to accounts. B. Use Account teams and sharing rules to share cases with sales associates. oN change required to the Opportunity object, C. Use Account teams and Case teams. No configuration required for the Opportunity object 60. At Universal Containers, there's a team of auditors distributed throughout the organization that all need access to high-value opportunities. With a Private sharing model, which option should an architect recommend when designing a solution for this requirement? A. Put the auditors at the highest level of the Role Hierarchy. B. Create a criteria-based sharing rule to give access ot the public group for high-value opportunities. C. Add the auditors to the default Opportunity Team. 61. A user posts a file to the Chatter feed for a record of an object that has a Private organization-wide default. Which statement accurately describes who can view the file by default? A. The user who posted the file and users with access to the record B. The user who posted the file and users with a shared Chatter post link to the file C. Only the user who posted the file 62. Sales Reps at Universal Containers sometimes create large files as a part of the Sales process that are too large to share over email. They would like users to be able to share files with customers, but the CISO has requested that any file links shared must be protected by a password. How can this be accomplished? A. Set up an experience cloud site for customers to access files. Share the file with customers via chatter. Customers can then log into the site to access the content, B. Sales reps can create a content delivery. During creation, the user should select the option to require a password to access content. C. Utilize an AppExchange product for delivering password-protected files to thelr customers. 63. Universal Containers uses Parson Accounts to represent retail customers and Business Accounts to represent commercial customers. The retail sales team should not have access to commercial customers but should have access to ALL retail customers. With the organization-wide default on Account set to Private, how should the architect meet these requirements? A. Create an owner-based sharing rule on AccountContactRelation to grant access to all account contact roles records owned by retail sales reps. B. Update the Retail Sales profile to grant access to Person Account record type. C. Create a criteria-Based sharing rule giving the Retail Sales role access to Accounts of type PersonAccount. 64. Universal Containers is implementing Sales Cloud. During the final quarter of the financial year, sales managers help each other close deals. They requested a solution In Salesforce to allow them to share opportunities with other sales managers from different teams as needed. They also requested that sharing deals should expire automatically 2 weeks after the new fiscal year starts. Which proposed solution meets the requirements? A. Sharing rules to share opportunities with sales managers B. Scheduled Apex job to remove access C. Apex sharing to share opportunities with sales managers 65. A sales coach at Universal Containers wants to create and share a report folder with other sales coaches. Which two permissions are required to accomplish this? A. Manage Reports In Public Folders and edit My Reports. B. Create and customize Reports and Report Folders. C. Create Report Folders and manage Reports in Public Folders. 66. A sales rep at Universal Containers was added to an opportunity team with Read/Write permissions. Which action is she allowed to perform in the opportunity? A. Add/remove members In the opportunity team. B. Replace opportunity owner. C. Update opportunity stage. 67. The finance team at Universal Containers usually does not have access to account and contact records. A finance analyst was temporarily given opportunity access for a big deal to help with tax calculation. However, she can now also access account and contact records. What is causing this issue? A. Account records can be accessed due to Implicit sharing from Opportunity. B. Contact records can be accessed due to Implicit sharing from Opportunity. C. Account records can be accessed due to Role Hierarchy 68. Sales operations at Universal Containers (UC) has created Public Reports and Dashboards folders for sales managers, Sales operations and sales managers report to the VP of sales, Sales operations currently spends a few hours each month updating users that should have access to edit reports and dashboards In these folders. How should UC grant access to sales managers to automate access to these Reports and Dashboards folders? A. Share the folders with the Sales Managers profile. B. Share the folders with a "Sales Managers" Public Group. C. Share the folders with the lowest roles in the Role Hierarchy; superiors will get access automatically. 69. Users at Universal Containers are complaining that a field has disappeared from the Account page after last weekend's deployment. The page layout did not change with this deployment. How should the admin troubleshoot this Issue? A. Log in as a user and check several accounts to isolate the problem records. B. View Field Accessibility In the Object Manager. C. Run a Who Sees What report, filtering on Account. 70. Universal Containers has a Performance Feedback custom object (Private organization-wide default) used by customers to report any Issues with dellvery drivers. Feedback should not be visible to the driver, but any feedback records should be accessible to people above them in the Role Hierarchy, even when the driver changes managers. Assuming managers have Read access to the Feedback object, which three steps are necessary to solve these requirements? A. Remove Read permission on the Driver profile, have feedback ownership transferred to the driver's manager when feedback Is submitted, and use the Role Hierarchy to give access to a driver's manager. B. Remove Read permission on the Driver profile, have feedback ownership transferred to the driver when feedback is submitted, and use the Role Hierarchy to give access to a driver's manager. C. Remove Read permission on the Driver profile, have feedback ownership transferred to the driver when feedback Is submitted, and create an ownership-based sharing rule. 71. A custom ServiceFeedback object is used to collect partner feedback. ServiceFeedback records should be available to all internal employees. The organization-wide default (OWD) is set to Private for external users so partners cannot see feedback from other partner users. How should the architect give access to all internal employees? A. Create an owner-based sharing rule for all ServiceFeedback records owned by partners. B. Ensure all the internal users are above the partners in the Role Hierarchy. C. Set the OWD for Internal Users to Public Read-Only. 72. Universal Containers (UC) has a custom Apex class that enforces a business process and updates opportunities. UC has noticed that fields with Field-Level Security permission of Read-Only on certain users’ profiles are being updated by this class. How should the architect fix this problem? A. Add the With Sharing keyword to the class. B. Use the IsUpdateable() Apex method to test each field prior to allowing update. C. Put the code in an inner class that uses the With Sharing keyword. 73. Which method should be used to grant access to an unrelated group of users? A. Public Groups B. Sharing Sets C. Role Hierarchy 74. Universal Containers (UC) Is looking to expand its delivery capabilities through a network of distributors that use a Partner Community license. UC employees currently can view all delivery records through the organization-wide default (OWD) setting of Public Read-Only. Which approach should an architect recommend to limit the records a distributor can see? A. Set the External OWD to Private for the Delivery object. B. Create a criteria-based sharing rule to grant access to the distributor. C. Create an ownership-based sharing 75. Universal Containers (UC) has a mostly Private organization-wide default, as it Is a core principle of UC to respect client data privacy. UC has implemented complex processes for granting access to Opportunity data. A few key members of the sales reporting team need to always be able to see, but not change, Opportunity data for all opportunities. What should an architect recommend as an approach to meet these requirements? A. Create a permission set that grants the View All permission for Opportunity. B. Create a permission set that grants the View All Data permission. C. Give the View All Data permission to the Sales Reporting profile. 76. Universal Containers implemented Sales Cloud and requested that sales agents have access to products and prices the company sells, and to be able to create opportunities for its customers. What should the organization-wide defaults be for pricebook? A. Public Read-Only B. View C. Use 77. Universal Containers (UC) has 200 distributors that use Partner Community licenses, Partners cannot see each other's data, but UC is also trying to give more visibility to data for certain Individuals at a distributor. Which scalable option give users In the partner manager role access to all case and container records for partner users at the same distributor? A. Create an ownership-based sharing rule. B. Create sharing sets. C. Give Super User permission to the individual partner manager users. 78. Universal Containers has implemented Customer Community with Customer Community Plus licenses for its distributors. Some distributors requested granting specific community users (agents) to view cases submitted by other agents of the same distributor. Which feature only supports these requirements? A. Partner super user B. Delegate external user C. Permission set to grant community admin permission 79. Universal Containers is planning to pilot a new application to a small set of sales reps. What is the optimal way to grant only those sales reps access to the new functionality, while hiding the legacy functionality? A. Clone the Sales Rep profile, adjust settings, and assign the pilot users the new profile. B. Revoke access to legacy functions In the Sales Rep profile and create a permission set for the new functionality. C. Create a permission set to grant access to the new functionality and hide the old functionality. 80. Universal Containers (UC) is a fast-growing company that sells containers globally. It has thousands of dealerships throughout the world where local dealers service containers. UC implemented a new Partner Community for its dealers. Each dealership has a dealer manager who manages the service agents. The community-sharing model Is private. What is the optimal option to give dealer managers visibility to customer cases only raised by their service agents? A. Create a sharing group to share cases created by service agents with their dealer manager. B. Use the Role Hierarchy so that the cases raised by service agents will be visible to their relevant dealer managers. C. Create a sharing rule to share cases created by service agents with their dealer manager. 81. Universal Containers created a public group with certain sales engineers to help on complex deals, as well as a sharing rule to grant access to these opportunities. The Opportunity organization-wide default is Private. What is the impact of these sharing settings? A. Other sales engineers who are in the same Role Hierarchy as the sales engineers of the public group will also have access to these records. B. Sales engineers and their managers in the Role Hierarchy will also have access to these records. C. Subordinates of managers who have sales engineers In the public group will also have access to these records. 82. Sales Reps at Universal Containers sometimes create large files as a part of the Sales process that are too large to share over email. They would like users to be able to share files with customers, but the CISO has requested that any file links shared must be protected by a password. How can this be accomplished? A. Utilize an AppExchange product for delivering password-protected files to thelr customers. B. Create a content delivery; during creation, the user should select the option to require a password to access content. C. Set up an experience cloud site for customers to access files. Share the file with customers via chatter. Customers can then log into the site to access the content. 83. Universal Containers (UC) implemented Sales Cloud and requested that only certain branch staff trained to sell high risk products can create opportunities for high risk products. In which two ways can an Architect allow only specific branch staff to sell high risk products? Choose 2 answers A. Share (High Risk) price book with the trained staff via sharing rule. B. Share (High Risk) price book with the trained staff via manual sharing. C. Configure Price book Organization wide default to No Access. D. Set Price book Organization Wide Default to View Only and share the price book (High Risk) with the trained staff. 84. The architect at Universal Containers is trying to ensure that security vulnerabilities are not present within the Salesforce organization. What two tests should the architect verify? Choose 2 answers A. Test for SOQL Injection. B. Test for invalid user access attempts. C. Test Cross-Site Scripting on custom pages. D. Test Cross-Site Scripting on Apex queries. 85. Universal Containers (UC) wants all full-time internal employees to be able to view all leads. A subset of contractors and temporary employees should also be able to see leads. Which organization-wide default (OWD) approach should an architect recommend that will help UC implement these requirements? A. Implement a Public Read/Write/Transfer OWD on Lead. B. Implement a Public Read/Write OWD no Lead. C. Implement a Private OWD on Lead. D. Implement a Public Read Only OWD on Lead. 86. An External Object is created to show Invoices from an external accounting system. When viewing the External Object, a user should only access invoice records the user is authorized to see. What two actions are required to achieve the above requirements? Choose 2 answers A. Grant access to the External Object to only the Account Manager profile. B. Create an owner based sharing rule to grant visibility to the Invoice object. C. Restrict access to data in the accounting system. D. Setup External Object to use Auth to connect to the Accounting system. 87. Universal Containers (UC) has a team that analyzes customer orders looking for fraud. This team needs access to Invoice records (Custom object, Private OWD). UC has complex rules to control users' access. The Salesforce Architect recommended using Apex managed sharing to meet these requirements. Which two recommendations should a Salesforce Developer consider when implementing the changes? Choose 2 answers A. Use runAs system method to test different users accessing these records. B. Use "With Sharing" keyword to enforce field-level security. C. Use "Without Sharing" keyword to make sure record visibility will be considered. D. Use "With Sharing" keyword to make sure record visibility wil always be considered. 88. Universal Containers (UC) has recently changed its internal policy to follow market regulations and create an internal team to manage the collection process. Only this team should have access to Invoice records. Currently, Invoice is a child in a Master- Detail relationship to Account. Although related lists have been removed from the page layouts, some profiles still have access to the Invoice object. Which approach should an architect recommend to fix this problem? A. Create a new Profile with no access to the Invoice object and assign it to all unauthorized users. B. Replace Account and Invoice Master-Detail Relationship by aLookup and remove Invoice Access from the unauthorized profiles. C. Create a Permission Set with No Access to the Invoice object and assign it to unauthorized users. D. Change the Invoice organization-wide default from Controlled by Parent to Private and remove Invoice Access from the unauthorized profiles. 89. Universal Containers (UC) has a business unit that uses a custom object to track requests which demands a high level of internal team collaboration. Although all requests must have an owner, all employees are required to collaborate on requests. Which recommendation should a Salesforce architect provide to optimize the solution and meet these requirements? A. Set the Request object's OWD to Private and grant Modify All Data permission on all Profiles for the Request object. B. Set the Request object's OWD to Private and criteria-based sharing rule to share all Request records with all internal users. C. Set the Request object's OWD to Public Read/Write. D. Set the Request object's OWD to Public Read Only and configure role hierarchy 90. After setting up Customer Community and enabling collaboration, the architect realizes that customers are only seeing Chatter posts from other customers ni their account What should the architect do to allow viewing Chatter posts from all customers? A. Set View Al for Chatter posts. B. Enable Internal Users Visibility. C. Enable Community User Visibility. D. Enable Chatter Super User. 91. A sales rep at Universal Containers (UC) has manually shared an Opportunity record with internal pre-sales users. After some time, the sales rep moved to another position and all opportunities records that were owned were transferred to a new sales rep. What happened to the internal pre-sales user's access to the opportunity? A. They still have access to the record due to team access. B. They still have access to the record due to inherited sharing. C. They still have access to the record due to implicit sharing. D. They will no longer have access to the record. 92. Universal Containers keeps product brochures in Salesforce as files. Sarah shares a public link to a product brochure with potential customers during a meeting. She wants to ensure they do not have access to the file after the meeting. How should Sarah accomplish this? A. Delete the public link. B. Move the file to another folder. C. Rename the file. D. Delete the file. 93. After testing and deploying a new trigger that creates a related order when an opportunity is closed, the Architect begins receiving complaints of permission error messages appearing when closing an opportunity. How did this error occur? A. Trigger is using IsCreateable() Apex method and the user does not have create permission on the Order object. B. The trigger should be using RunAs() when creating the order. C. The trigger handler class is using with sharing and the user does not have access to the orders related to the opportunity. D. The trigger handlers class does not use any sharing keywords and the user does not have access to the orders related to the opportunity. 94. Universal Containers (UC) stores basic employee information in a custom Employee object (OWD- Public Read Only). There are a few sensitive fields that need restricted access (salary, grade level, last performance rating). Other than field level security, what other options are available to make these fields accessible to the Human Resource team? A. There are no other options besides using field level security. B. Change OWD of Employee custom object to private and a Lookup self-relationship to store only new restricted information. C. Create a new custom object controlled by parent and a Master-Detail relationship to Employee to store new restricted information. D. Create a new custom object with private OWD and Lookup relationship to Employee to store new restricted information. 95. Universal containers (UC) implemented a private organization-wide default for the Container and Case objects. How can UC give support representatives access to Container and Case records owned by Customer Community users? A. Create a ShareGroup based on the sharing set created for the Customer Community User Profile. B. Create an ownership-based sharing rule that gives access to the head of support role and internal subordinates. C. Support representatives will automatically get access to these records via the role hierarchy. D. Create a criteria-based sharing rule that gives access to the head of support role and internal subordinates. 96. To reduce the case time resolution and improve customer satisfaction, Universal Containers (UC) wants to allow specialized marketing consultants to have edit access to Case records of VIP customers. These cases should be visible only to the support rep who owns the case and the marketing consultants. Which recommendation should a Salesforce architect give to allow this scenario? A. Case organization-wide default Public Read Only and Case Team with Read permission. B. Case organization-wide default Private and Account Team with Read/Edit permission. C. Case organization-wide default Private, role hierarchy, and Read Only ownership-based sharing rule. D. Case organization-wide default Private and Case Team with Read/Edit permission 97. Universal Containers (UC) enables customers to manage issues using a Customer Community license.The Case external organization-wide default is set to Private. Currently community users can only see cases they created. What can be done to allow community users to see all cases for their account? A. Ensure the criteria-based sharing rule applies to all users. B. Upgrade the licenses to Customer Community Plus. C. Create a sharing set for these customers. D. Write an Apex class to create manual shares for these users 98. What vulnerability can exist when controllers use dynamic rather than static queries and bind variables? A. Buffer Overflow Attacks B. SOQL Injection C. Record Access Override D. Cross-site scripting 99. Universal Containers (UC) has a custom Apex class that enforces a business process and updates opportunities. UC has noticed that fields with field-level security permission ofread only on certain users' profiles are being updated by this class. How should the architect fix this problem? A. Use the IsUpdateable() Apex method to test each field prior to allowing update. B. Add With Sharing keyword to the class. C. Use the WITH SECURITY_ENFORCED keyword in the SOQL statement. D. Put the code in an inner class that uses the With Sharing keyword. 100. Bob uploads a PDF to his Files Home private library. Who can view this file? A. Bob and users with View All Data permission B. Bob and users above Bob in the role hierarchy C. Only Bob D. Bob and users with Modify All Data permission 101.