ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam PL-600 All Questions

View all questions & answers for the PL-600 exam
Go to Exam

Exam PL-600 topic 2 question 34 discussion

Actual exam question from Microsoft's PL-600
Question #: 34
Topic #: 2
[All PL-600 Questions]

DRAG DROP -
You are designing a Microsoft Power Platform solution that will be deployed to two separate companies in the same Microsoft Office 365 tenant: Contoso, Ltd. and
Contoso Pharmaceuticals.
The solution must meet the following security requirements:
✑ Restrict Contoso, Ltd. users from seeing the Contoso Pharmaceuticals company.
✑ Restrict access to specific forms.
✑ Restrict access to specific tables.
What should you recommend? To answer, drag the appropriate security types to the correct restrictions. Each security type may be used once, more than once, or not at all. You may need to drag the split bar between panes or scroll to view content.
NOTE: Each correct selection is worth one point.
Select and Place:

Show Suggested Answer Hide Answer
Suggested Answer:
Box 1: Team -
Restrict Contoso, Ltd. users from seeing the Contoso Pharmaceuticals company.
One tenant with two teams.

Box 2: Security group -
Restrict access to specific forms.
For model-driven apps, form-level security allows you to allow only specific security groups to access specific forms. This is useful if you want to restrict how people enter or view data by their job role.

Box 3: Security role -
Restrict access to specific tables.
By default, permissions are applied to components containing data. Making it visible to anyone, or only to specific roles, is done by managing table permissions.
Reference:
https://docs.microsoft.com/en-us/power-apps/maker/portals/add-form https://docs.microsoft.com/en-us/power-apps/guidance/planning/security
by ClairFraser at Sept. 8, 2022, 10:02 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
avow
Highly Voted 1 year, 10 months ago
1 - Security Groups 2+3 - Security Roles This is the best answer available. If the option was to use Business Units then you could set users to a business unit and divide the data inside the same environment but that is not offered here.
upvoted 53 times
Sslavko
10 months, 3 weeks ago
Team is correct, because when you create a business unit, you also have a team in the background. -
upvoted 4 times
...
Naveed_A
1 year, 8 months ago
I totally agree with your reasoning.
upvoted 2 times
...
...
ClairFraser
Highly Voted 1 year, 11 months ago
Assuming the companies use separate instances and just share functionality, 1 - Security Groups 2+3 - Security Roles https://docs.microsoft.com/en-us/power-apps/maker/model-driven-apps/control-access-forms#set-security-roles-for-a-form
upvoted 10 times
TheBinMan
1 year, 10 months ago
Sepeate instances is an assumption. From what i read, they are using the same tables in the same dataverse, but again is that an assumption.
upvoted 1 times
...
...
Acrious
Most Recent 1 year ago
I also believe 1) Security Groups 2) / 3) are Security Roles as this would be the standard way to do this.
upvoted 2 times
...
powerrage
1 year, 4 months ago
If I see this questions on my exam I'll give feedback, there is so much room for assumptions that would change the valid answer. I also assumed separate environments and deploy same solutions for the 2 companies (since Business Units is not a listed option). Therefore: 1 --> Security Groups 2 & 3 --> Security Roles
upvoted 2 times
JazT365
10 months ago
Was it on your exam?
upvoted 1 times
...
...
NataliWinOn365
1 year, 9 months ago
I am also assuming a lot, but I interpret 1 as there is a tenant, and two environments. So my answers would be: 1. Security Group 2. + 3 Security Role
upvoted 4 times
...
petertwilliams
1 year, 9 months ago
Warning: this link - https://docs.microsoft.com/en-us/power-apps/guidance/planning/security - does state that security GROUPS can be used to restrict access to specific forms - which is false. If you click on the link on the page to - https://learn.microsoft.com/en-us/power-apps/maker/model-driven-apps/control-access-forms - you will see that ROLES control access to forms.
upvoted 2 times
dlnuser
1 year, 3 months ago
This is correct, security groups are in Microsoft 365/Azure AD and can only grant global access to a Power Platform environment, they cannot be used to control what users can and cannot do within the environment (aka forms and table permissions).
upvoted 1 times
...
...
Giova
1 year, 10 months ago
https://www.itexams.com/exam/MB-600....question 3
upvoted 1 times
...
ArezouDynamics
1 year, 10 months ago
I think as below: 1) This can be setup based on the business unit; so, I'll go with User Profile 2) Security Role 3) Team and Security Role can be correct. But since Team under the hood is using Security Role to access tables, I'll select Security Role.
upvoted 2 times
RalphE
1 year, 8 months ago
Not sure, its about users should not see the other environment. So i would go for Security group.
upvoted 1 times
Sslavko
10 months, 3 weeks ago
They are not talking about Environments - assuming that "Companies" are business units - and therefore you heave teams - connected to this Business units in the same Envrionment- with them you can seperate.
upvoted 1 times
...
...
...
AlRe
1 year, 10 months ago
I think it is correct. However, the questions and requirements are not very precise. The is too much room for interpretation.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel