ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam MB-901 All Questions

View all questions & answers for the MB-901 exam
Go to Exam

Exam MB-901 topic 1 question 21 discussion

Actual exam question from Microsoft's MB-901
Question #: 21
Topic #: 1
[All MB-901 Questions]

A company has four territory managers. Ten salespeople report to each manager.
Territory managers need to be able to see records related to each salesperson that they manage. Salespeople must be able to see only their own records.
What should you implement?

  • A. Active Directory groups
  • B. Role-based security
  • C. App-based security
  • D. Field-level security
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
Reference:
https://docs.microsoft.com/en-us/learn/modules/recognize-dynamics-365-security/6-security-model-driven-apps
by Radoslavov at Dec. 2, 2020, 7:50 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Radoslavov
Highly Voted 4 years, 6 months ago
B. Role-based security is correct, there is no App-based security, check the article in the reference, it explains how role-based security model works
upvoted 36 times
Israr0_0
4 years, 4 months ago
yes Radoslavov I agree with you
upvoted 2 times
...
XSmashed
4 years, 3 months ago
I agree.
upvoted 1 times
...
Royden87
3 years, 11 months ago
This is correct. For the requirement specified, the team managers would be assigned 'Local' access (access records in users' BU only) whereas team members would be assigned 'Basic' access (access to records the user owns). This is all mentioned under the section Role-based Security at https://docs.microsoft.com/en-us/learn/modules/recognize-dynamics-365-security/6-security-model-driven-apps
upvoted 1 times
...
Zakriya
4 years, 2 months ago
Role based
upvoted 1 times
...
...
Teddy2021
Most Recent 4 years, 1 month ago
I think they gave wrong typing on the answer. In this case it needs to be Record-based security You can use record-based security to control user and team rights to do actions on individual records. This security applies to instances of entities (records) and is provided by access rights. The owner of a record can either share or grant access to a record to another user or team. Once they share or grant access, users must choose which rights they're granting. For example, the owner of an account record can grant read access to that account information, but not grant write access. Access rights apply after user privileges. For example, if a user doesn't have the privileges to read account records, they'll be unable to view any account, whatever of the access rights another user might grant them through sharing.
upvoted 1 times
...
badetoro234
4 years, 3 months ago
The correct answer should be D. What was described is exactly security based at the field level, and not role level. You can have two people have the same role, but when they have different field-level security, what they both see will be different, even if they are on the page
upvoted 3 times
badetoro234
4 years, 3 months ago
Having reviewed the question again, I am changing my answer to B (Role based security). The salesperson will have basic access level while the manager will local (deep or global if the managers have managers) access level
upvoted 3 times
Lipseal
4 years, 2 months ago
You are correct! This is how I understand it as well.... A Sales person is first given the Sales person PRIVILEGE. Then define the ACCESS LEVEL for that privilege for EACH sales person. Either Global, Deep, Local, Basic or None. A Territory manager would get an access level of LOCAL to see ALL records. A Sales person would get an access level of BASIC to see their own records only. BASIC = This access level gives a user access to records that the user owns, objects shared with the user, and objects shared with a team that the user is a member of. This level is the typical level of access for sales and service representatives. The application refers to this access level as user. LOCAL = This access level gives a user access to records in the user's business unit. Users who have local access have basic access automatically. Because this access level gives access to information throughout the business unit, restrict it to match the organization's data security plan. This level of access is for MANAGERS with authority over the business unit. The application refers to this access level as business unit.
upvoted 3 times
...
...
...
soladejo
4 years, 3 months ago
role-based security is the absolute answer. period!!!
upvoted 3 times
...
debs
4 years, 3 months ago
I agree there is nothing like app based security.
upvoted 2 times
...
danialonso
4 years, 3 months ago
"Role-based security" is the correct answer.
upvoted 2 times
...
Seba
4 years, 4 months ago
Role based
upvoted 3 times
...
blahblah
4 years, 4 months ago
role based
upvoted 3 times
...
mcarterred
4 years, 5 months ago
role based
upvoted 3 times
...
Moneyman
4 years, 5 months ago
Role based security is correct. There's nothing like app based security
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel