Salesforce Certified Sharing and Visibility Designer Exam - Questions and Answers

Question 1

Ursa Major Solar is writing test methods.
Which functionality does the system method “runAs()” verify?

A. Enforcement of a user’s field-level security
B. Enforcement of a user’s record sharing
C. Enforcement of a user’s public group assignments
D. Enforcement of user’s permissions

Answer : B

Question 2

Ursa Major Solar wants the ability to hide specific regional accounts from sales reps and sales managers. Only roles that are sales executive, or above, should be able to access regional accounts. The company plans to update their Organization-Wide Sharing Settings for the Account Object from a Public Read/Write model to a Private model to accomplish their goal? Ursa Major Solar’s Role Hierarchy matches its organizational hierarchy.
What are two approaches an Architect should consider when designing the solution? (Choose two.)

A. If a sales rep is added to the Opportunity Team for a regional account, they will gain access to account data.
B. Regional accounts must be owned by a user who is above the sales managers to the Role Hierarchy.
C. Ensure that Apex managed sharing is disabled for the account object to protect the regional accounts.
D. Sales executives will need a sharing rule created so that they can see accounts owned by Sales Users.

Answer : AB

Question 3

DreamHouse Realty needs an Architect to restrict users’ access to export reports.
What should an Architect remove to accomplish this goal?

A. The “Report Manager” user permission
B. The “Allow Export” on the report folder settings
C. The Export button from the report page layout
D. The “Export Reports” profile permission

Answer : D

Question 4

A Cloud Kicks IT team member is building an integration within a managed package for their internal org that requires login to an external system. The end point requires basic authentication.
Which three methods should an Architect recommend to secure the credentials, such as username and password, in this scenario? (Choose three.)

A. Store the credentials in protected custom settings that are used in the Apex Callout
B. Store the credentials in Named Credentials that are used in the Apex Callout
C. Store the credentials in the Apex code, which will NOT be available to non-admins
D. Store the credentials in a custom object using encrypted fields
E. Store the credentials in protected custom metadata that are used in the Apex Callout

Answer : BDE

Question 5

Cloud Kicks needs to provide implicit record access to users.
Which two options will help Cloud Kicks achieve this goal? (Choose two.)

A. Access to related leads for the owner of the parent campaign
B. Read-only access to parent account for a user, based on a criteria-based sharing rule
C. Access to child opportunities for the owner of the parent account
D. Read-only access to the parent account for a user with access to a child case

Answer : CD

Question 6

DreamHouse Realty has a custom object named Employee Review that has an Organization-Wide Default security setting of Private. When a reviewer is assigned to perform a review, a user lookup on the Employee Review object is populated.
This user needs to be granted edit access to the record, but they are NOT the owner.
What should DreamHouse Realty do to achieve this goal?

A. The user will be granted access to the record automatically when the user lookup is populated
B. Create a criteria-based sharing rule to share the record with the user in the lookup field
C. Create an Apex trigger to insert an Employee Review Share record with an access level of Edit
D. Create a workflow rule to share the Employee Review record with the user in the lookup field

Answer : D

Question 7

An Architect is working with Ursa Major Solar, a company that has the following environment and requirements:
Commercial and Consumer support departments roll up to the same Support Director.
The Commercial and Consumer sales users roll up to the same VP of Sales, but there should be no collaboration between sales departments.
The Commercial and Consumer sales department should share their customers with each other. However, the Commercial Account and Consumer Account support departments should not collaborate.
The sales departments will remain the Account Owner for the Accounts that they sell to.
What Organization-Wide Default is recommended for Accounts, and how would the Architect enable proper support Account Sharing for Commercial and Consumer sales?

A. Private Account Sharing with Sharing Rules from Commercial Sales Role(s) to Consumer Support Role(s) and Consumer Sales Role(s) to Commercial Support Role(s).
B. Private Account Sharing with Sharing Rules from Commercial Sales Role(s) to Commercial Support Role(s) and Consumer Sales Role(s) to Consumer Support Role(s).
C. Private Account Sharing with Sharing Rules from Commercial Sales Group(s) to Commercial Support Group(s) and Consumer Sales Group(s) to Consumer Support Group(s).
D. Read-Only Account Sharing with Sharing Rules from Commercial Sales Role(s) to Consumer Support Group(s) and Consumer Sales Role(s) to Commercial Support Group(s).

Answer : B

Question 8

A user at Get Cloudy Consulting needs to share a Report or Dashboard folder with other users in the Organization?
Which two actions can be taken to achieve this goal? (Choose two.)

A. Use Roles
B. Use Profiles
C. Use Public Groups
D. Use Teams

Answer : AC

Question 9

When Opportunity Sharing is set to Private with Opportunity Teams enabled, which three user configuration option allows the Owner of the Opportunity to be changed? (Choose three.)

A. Either a user with the “Transfer Records” permission or the System Administrator
B. The current Opportunity Owner can transfer the Ownership
C. The user specified as the Manager on the Owner’s User Profile
D. Any Opportunity Team Member on the current Opportunity
E. An individual above the Opportunity Owner in the Role Hierarchy

Answer : ABE

Question 10

Get Cloudy Consulting uses a strict security model. They enforce this model through object, field, and row-based security mechanisms. The Chief Technology Officer (CTO) at Get Cloudy Consulting wants to thoroughly test the security model, and an Architect decides to use Apex automated tests to fulfill the CTO’s request.
What are three considerations for the Architect when using the runAs() method to design Apex unit tests? (Choose three.)

A. runAs() can be used inside of test classes to validate field-level permissions
B. runAs() can be used inside of test classes to validate record-level security
C. runAs() does NOT enforce user permissions or field-level permissions in test classes
D. runAs() counts towards total DML statements issued within the transaction
E. runAs() can be used outside of test classes to bypass record-level security

Answer : BCD

Question 11

Ursa Major Solar uses the Case object for tracking purposes. The company has initiated Case teams to allow several support representatives to manage the Cases.
A user is currently creating a list view on the Case object.
What are two “Filter by owner” options that the user sees? (Choose two.)

A. My case teams
B. Public groups
C. Queue owned cases
D. Roles

Answer : AC

Question 12

Ursa Major Solar developed an AppExchange managed package for their research partners. This package requires a private key to be generated for each partner and used by the code. IT representatives at Ursa Major Solar must be able to access the private key value to debug connection issues, but the partner must NOT be able to access the value.
To best support this requirement, where should the value be stored?

A. In a static variable in a class included in the managed package
B. In a text field on a protected custom setting in the package
C. In an encrypted field on a custom object in the package
D. In a text field on a list custom setting in the managed package

Answer : D

Question 13

Get Cloudy Consulting wants to create a custom team solution that can be used on a custom Loan object. The Loan custom object must be set to Private in the Org-Wide Defaults, and any user added to the Custom Team object should have Read Only access to the corresponding Loan record. Additionally, if the Custom Team record is marked as “Primary” then the corresponding user should have Read/Edit access to the corresponding Loan record.
What are two methods for fulfilling these requirements? (Choose two.)

A. Create a custom trigger on the Custom Team object that inserts or updates records in the Loan_share object
B. Create Apex Sharing Reasons on the Loan object to identify the reason the Loan record was shared
C. Create a criteria-based sharing rule on the Loan object that will share the Loan record with the appropriate user in the Custom Team object
D. Create an owner-based sharing rule on the Custom Team object that will share the Loan record to the owner of the Custom Team record

Answer : CD

Question 14

Cloud Kicks imports large-volume bulk data loads and wants to limit the risk of failures associated with these imports.
What are two options for achieving this goal? (Choose two.)

A. Reduce user group hierarchy
B. Group records by ParentID within a batch
C. Defer Sharing Calculation
D. Enlarge batch size

Answer : BC

Question 15

Universal Containers has a custom Visualforce application that uses a custom Apex controller.
Within this Visualforce application, what should the Architect do to ensure that object-level security is enforced?

A. Use the “Without Sharing” keyword when defining the Apex controller class
B. Utilize the “With Sharing” keyword when defining the Apex controller class
C. Use the Schema.DescribeSObjectResult isAccessible() method in the Apex controller
D. Utilize the “With Sharing” keyword when defining the Visualforce page

Answer : C

Certified Sharing and Visibility Designer v1.0

Question 1

Question 2

Question 3

Question 4

Question 5

Question 6

Question 7

Question 8

Question 9

Question 10

Question 11

Question 12

Question 13

Question 14

Question 15

Talk to us!