Salesforce Salesforce Certifications SHARING-AND-VISIBILITY-DESIGNER Questions & Answers

• Question 231:

  Universal Containers has a custom Visualforce application that uses a custom Apex controller.

  Within this Visualforce application, what should the Architect do to ensure that object-level security is enforced?

  A. Use the "Without Sharing" keyword when defining the Apex controller class

  B. Utilize the "With Sharing" keyword when defining the Apex controller class

  C. Use the Schema.DescribeSObjectResult isAccessible() method in the Apex controller

  D. Utilize the "With Sharing" keyword when defining the Visualforce page

  Correct Answer: C

• Question 232:

  A manager at Ursa Major Solar wants to validate sharing and visibility changes.

  What is the recommended approach?

  A. Utilize Administrative and User reports to view the Active Users

  B. Utilize the Login As feature for a sample user in each role and profile

  C. Utilize Field Audit Trail to audit the field metadata and visibility

  D. Utilize the Sharing button to test Profile and Permission set changes

  Correct Answer: B

• Question 233:

  Ursa Major Solar sells solar panels globally and is growing rapidly. The company has over 5,000 dealerships throughout the world where local dealers service solar panels sold locally. Ursa Major Solar recently opened two dealerships in California: NorthCal and SoCal. Ursa Major Solar implemented a new partner community to enable their dealers. Each dealership has a dealer Manager who has all service agents report into them. Additionally, Ursa Major Solar uses a private sharing model.

  The company needs to enable dealer managers to have visibility to customer cases within their dealership but NOT across all dealerships.

  What should the Architect recommend to accomplish this goal?

  A. No changes are needed to the sharing and visibility model to implement this requirement

  B. Implement sharing groups that share all cases to all agents under the Dealer manager

  C. Build a trigger that creates manual sharing of cases as needed whenever a new case is created

  D. Implement a batch job that creates sharing rules as needed, based on the cases created

  Correct Answer: A

• Question 234:

  Get Cloudy Consulting has the following environment:

  -

  Global 24x7 Salesforce implementation that supports Marketing, Order Management, Sales and other miscellaneous business divisions.

  -

  A nested territory hierarchy, 12,000 sales user, and 22,000 support agents.

  -Daily territory changes.

  -

  A high demand for new applications and changes to the platform.

  -

  New releases delivered every two weeks on the platform, based on an agile development model.

  An Architect needs to help Get Cloudy Consulting with system recovery from a maintenance restart on Salesforce servers.

  Which Salesforce feature should the Architect use to achieve this goal?

  A. Enable Deferred Sharing Rule recalculation

  B. Enable Granular Locking on the system

  C. Enable Filter-Based Opportunity Territory Assignment

  D. Enable Parallel Sharing Rule recalculation

  Correct Answer: A

• Question 235:

  Ursa Major Solar has the goal of increasing performance of the following:

  -"Record Access"

  -"Sharing Calculations"

  Which three areas should an Architect review to help Ursa Major Solar achieve this goal? (Choose three.)

  A. Opportunity data, to ensure that no Account has more than 10,000 Opportunity records that are related to it

  B. Custom Object data, to ensure that no Account has more than 10,000 Custom Objects that look up to it

  C. Record ownership, to ensure that no user owns more than 10,000 Object records in the system

  D. Case data, to ensure that no Account has more than 10,000 Case records that are related to it

  E. Apex Managed Sharing triggers, to ensure that no trigger id querying more than 10,000 Object records

  Correct Answer: ABC

• Question 236:

  DreamHouse Realty is designing a new community using the Customer Community license type. They have the following requirements:

  -

  They want the users to complete survey questions through the community interface.

  -

  Responses need to be stored in a Custom Object that has a lookup to the account object.

  -

  Any internal user who has access to the account should be able to see all survey responses.

  -

  All Customer Community users should be able to see surveys filled in by other users for their company, but not surveys for other companies.

  Which security settings should be used to achieve this goal?

  A. Set the custom object to be master-detail to the Account and leave the Organization-Wide Default settings as their default values.

  B. Set the Organization-Wide Default security to be Private for both internal and external users and use Sharing Rules to grant the desired access.

  C. Set the Organization-Wide Default security to be Public Read/Write for internal users and a Private for external users.

  D. Set all Organization-Wide Default settings to be Public Read/Write for both internal and external users.

  Correct Answer: B

• Question 237:

  Review the following code snippet.

  

  Get Cloudy Consulting wants an Architect to assess this code snippet for potential security vulnerabilities. What is one appropriate response from the Architect?

  A. Access Control is the possible threat

  B. Cross-Site Scripting is the possible threat

  C. Arbitrary Redirects is the possible threat

  D. SOQL Injection is the possible threat

  Correct Answer: A

• Question 238:

  Universal Containers has a custom Visualforce application that uses a standard Apex controller on the Lead object.

  What should the Architect do to ensure that object-level security is implemented within this application?

  A. Within the Visualforce page, use the {!$ObjectType.lead.accessible} expression

  B. When defining the Visualforce page, use the "With Sharing" keyword

  C. Within the Apex controller, use the Schema.DescribeSObjectResult isAccessible() method

  D. To enforce user permissions in the Apex controller, use the runAs() method

  Correct Answer: A

• Question 239:

  Get Cloudy Consulting uses a strict security model. They enforce this model through object, field, and row-based security mechanisms. The Chief Technology Officer (CTO) at Get Cloudy Consulting wants to thoroughly test the security model, and an Architect decides to use Apex automated tests to fulfill the CTO's request.

  What are three considerations for the Architect when using the runAs() method to design Apex unit tests? (Choose three.)

  A. runAs() can be used inside of test classes to validate field-level permissions

  B. runAs() can be used inside of test classes to validate record-level security

  C. runAs() does NOT enforce user permissions or field-level permissions in test classes

  D. runAs() counts towards total DML statements issued within the transaction

  E. runAs() can be used outside of test classes to bypass record-level security

  Correct Answer: BCD

• Question 240:

  Ursa Major Solar uses the Case object for tracking purposes. The company has initiated Case teams to allow several support representatives to manage the Cases.

  A user is currently creating a list view on the Case object.

  What are two "Filter by owner" options that the user sees? (Choose two.)

  A. My case teams

  B. Public groups

  C. Queue owned cases

  D. Roles

  Correct Answer: AC