CSA Question #162: Real Exam Question with Answer & Explanation

The correct answer is D: Ensures user has access to a table, before evaluating access to a field in the table. Access controls are evaluated from the most general to the most specific, ensuring a user has access to the overall table before specific fields within it.

Submitted by noor.lb· Apr 18, 2026Database Management and Platform Security

Question

What is the result of the order in which access controls are evaluated?

Options

AEnsures user has access to the fields in a table, before considering their access to the table
BEnsures user can get to work as quickly as possible
CEnsures user has access to the application, before evaluating access to a module within the
DEnsures user has access to a table, before evaluating access to a field in the table

Explanation

Access controls are evaluated from the most general to the most specific, ensuring a user has access to the overall table before specific fields within it.

Common mistakes.

A. This is incorrect because access to fields is considered after access to the table, not before.
B. While efficient security contributes to productivity, this choice doesn't describe the technical mechanism of access control evaluation order.
C. Access control evaluation primarily focuses on records and fields, not the application and module hierarchy in this specific context.

Concept tested. Access control evaluation order

Reference. https://docs.servicenow.com/bundle/utah-platform-security/page/administer/contextual-security/concept/c_ACLRulesEvaluationOrder.html

Topics

#Access Control List (ACL)#Security Evaluation#Record Security#Field Security

Community Discussion

No community discussion yet for this question.

Full CSA Practice Browse All CSA Questions