nerdexam
Salesforce

SALESFORCE-ASSOCIATE · Question #123

Different departments need to make sure their users have the same base access for their respective departments. How should this be implemented?

The correct answer is B. Profile. Profiles define the baseline set of object permissions, field access, app visibility, and system settings for a group of users, making them the right tool for standardizing base access across a department. All users in a department should share the same Profile as their foundatio

Security and Access

Question

Different departments need to make sure their users have the same base access for their respective departments. How should this be implemented?

Options

  • ASharing Set
  • BProfile
  • CPermission Set
  • DRole

How the community answered

(45 responses)
  • A
    2% (1)
  • B
    89% (40)
  • C
    7% (3)
  • D
    2% (1)

Why each option

Profiles define the baseline set of object permissions, field access, app visibility, and system settings for a group of users, making them the right tool for standardizing base access across a department. All users in a department should share the same Profile as their foundation.

ASharing Set

A Sharing Set is a feature used in Experience Cloud (Community) orgs to grant portal users access to records related to their account or contact - it does not define base system permissions.

BProfileCorrect

A Profile sets the baseline permissions and access for every user assigned to it, including object-level access (read, create, edit, delete), field-level security, app visibility, and system settings. Assigning all users in a department to the same Profile ensures a consistent base access level - additional permissions can be layered on top via Permission Sets.

CPermission Set

A Permission Set grants additional permissions on top of what a Profile already provides - it is additive and not designed to define the baseline access that all department members share.

DRole

A Role controls record-level visibility through the role hierarchy (who can see whose records) but does not define object permissions, field access, or system settings.

Concept tested: Profiles for standardizing base user access by department

Source: https://help.salesforce.com/s/articleView?id=sf.admin_userprofiles.htm&type=5

Topics

#Profiles#User Access#Security Model#Access Control

Community Discussion

No community discussion yet for this question.

Full SALESFORCE-ASSOCIATE Practice