ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam PL-600 All Questions

View all questions & answers for the PL-600 exam
Go to Exam

Exam PL-600 topic 2 question 29 discussion

Actual exam question from Microsoft's PL-600
Question #: 29
Topic #: 2
[All PL-600 Questions]

A local bank uses Microsoft Power Platform apps to store customer data.
The bank IT director discovers that all employees can see the social security numbers of their customers. The IT team does not understand how field-level security works and needs help with the design.
You need to recommend a solution to the bank that meets the following requirements:
✑ The system must restrict access to customer social security numbers to the vice president of finance only.
✑ The vice president of finance must be able to read and update customer social security numbers.
Which two actions should you recommend? Each correct answer presents part of the solution.
NOTE: Each correct selection is worth one point.

  • A. Set the values for the read permission and for the update permission for social security number to yes.
  • B. Enable field-level security for the member table.
  • C. Create a field-level security profile.
  • D. Enable field-level security for the social security number column.
Show Suggested Answer Hide Answer
Suggested Answer: CD 🗳️
by Danielsorocaba at April 26, 2022, 8:01 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Icky
Highly Voted 1 year, 11 months ago
Selected Answer: CD
Its not A, you set the permissions in the security profile, not on the column. Its a bit misleading. Given answer is correct.
upvoted 16 times
...
yf
Most Recent 1 year ago
Selected Answer: CD
C&D for me
upvoted 1 times
...
Parth91
1 year, 1 month ago
Selected Answer: CD
My answers would be C & D
upvoted 1 times
...
dlnuser
1 year, 3 months ago
Selected Answer: CD
A is wrong because it does not mention setting the permissions in the security profile. Even if you consider it as a configuration of the security profile, C and D still take precedence, as it's impossible to configure the field security profile to give access to a field if the field is not enabled for field-level security, and you can't configure a nonexistent security profile. Plus, configuring the profile to grant access to a specific field can be done at the same time as you create it. Thus, the only two mandatory steps are C and D.
upvoted 1 times
...
Odidepse
1 year, 6 months ago
Presented answers are correct and makes part of the solution as asked. You need to have a new FSP to hold the new rules for restricting visibility to the column so C and D is to assign which column you will enforce the restriction. You being an architect from the business scenario, I would ask the IT team who doesn’t understand fsp to google it and 90% of the time they may have done it. Then use mi rosoft learn to understand the security framework of MDA and see how powerful it is. Good luck to everyone!
upvoted 1 times
...
ClairFraser
1 year, 9 months ago
Selected Answer: AD
A and D respond directly to the two requirements specified. Of course, there are more stages - creating a profile and assigning it to the VP.
upvoted 1 times
...
baughfell
1 year, 11 months ago
Can't be A as everyone would still be able to view Member table not relevent so not B Answer is CD. C - Set field-level (column-level) security to restrict access. D - Create a security role to provide that access
upvoted 1 times
...
MrMiniMite
1 year, 11 months ago
Selected Answer: AC
CA makes more sense to me. We need to configure the security profile after creating it.
upvoted 1 times
...
[Removed]
2 years ago
we should create SC, enable SC for the column and assign permisions. vague question
upvoted 1 times
...
bingomutant
2 years ago
I would go for AC C - definitely you have to create a field security profile A - the question refers to the VP - you set his levels to access and update
upvoted 3 times
...
ettie54f_p929n
2 years, 1 month ago
Selected Answer: CD
Correct
upvoted 2 times
...
Danielsorocaba
2 years, 1 month ago
I'd go for A, D
upvoted 4 times
Danielsorocaba
2 years, 1 month ago
Actually, I think the given answer is correct
upvoted 2 times
...
JAVI1771
2 years, 1 month ago
I would go for A,D as well. The qeustion specifically asks for enabling read and update actions. In order to update those permissions a security profile must be created already. Only C and D would be a bit vague.
upvoted 2 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel