ExamTopics Logo
Mail Us[email protected]
Menu
Microsoft Discussions
exam questions

Exam PL-200 All Questions

View all questions & answers for the PL-200 exam
Go to Exam

Exam PL-200 topic 7 question 1 discussion

Actual exam question from Microsoft's PL-200
Question #: 1
Topic #: 7
[All PL-200 Questions]

HOTSPOT -
You need to address the executive's concerns regarding unnecessary data access.
Which security changes should you make? To answer, select the appropriate options in the answer area.
NOTE: Each correct selection is worth one point.
Hot Area:

Show Suggested Answer Hide Answer
Suggested Answer:
Box 1: Assign records to a service account and add the team member doing the verification by using an access team.

When to use access teams -
* The teams are dynamically formed and dissolved. This typically happens if the clear criteria for defining the teams, such as established territory, product, or volume aren't provided.
* The team members require different access rights on the records. You can share a record with several access teams, each team providing different access rights on the record. For example, one team is granted the Read access right on the account and another team, the Read, Write and Share access rights on the same account.
* A unique set of users requires access to a single record without having an ownership of the record.
Box 2: Assign records to the QV team when the service request is completed.
Issues: More employees than are required can access individual client information and continue to have access after a service request is completed.
Management has decided to create a new qualification verification (QV) role to help ensure that clients get the most accurate results. This role examines completed work to ensure that nothing is missed.
ג€¢ When users go on vacation, all their outstanding Service Request records are assigned to a substitute employee. The substitute employees are unable to see all the qualifications related to their service requests.
Reference:
https://docs.microsoft.com/en-us/power-apps/developer/data-platform/use-access-teams-owner-teams-collaborate-share-information
by Nyanne at Sept. 24, 2022, 8:52 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
SoraTT
Highly Voted 1 year, 11 months ago
Correct! In Exam on 28th January 2023 Scored 781
upvoted 9 times
...
jkaur
Most Recent 9 months, 1 week ago
Correct
upvoted 2 times
...
MrEz
11 months, 2 weeks ago
1) a) what is table security basic (maybe owning user priv. only -> on role, not table!)? create, read ? user? Business unit? I can see License Type can be set to Basic on the user record. Problem: holiday absences for assigning to user directly.--> the user manually makes reassign all? b) 'share with the team member' means how does it identify the 1 team member? c) 'add the team member' add to what (to the team? But if he is ‘the team member’ he is already member of the team), queue? and how is 'the team member' (the is 1) identified among the many team members? (1 team N members) the assigned user is the user who is responsible to do something, usually. Assigning records to a default(?) service account is not a good idea (maybe a team?), is that not what queues are for?? 2) a) goes with the QV team as an owner team...
upvoted 2 times
MrEz
11 months, 2 weeks ago
I would create a role which contains the table and add user privileges for crud. Then I would add the users to the private queue as queue members. So they can see the service request records. They would then have to pick the records from the queue and assign them to themselves removing the record from the queue and visibility of the users. Finally after completion, assigning to another queue where the queue members have final revision legitimation?
upvoted 1 times
...
...
wsjones
1 year, 5 months ago
on exam - 8/1/2023
upvoted 4 times
...
mvuser
1 year, 7 months ago
on 20th june 2023 exam
upvoted 2 times
...
charles879987
1 year, 8 months ago
on May 2023 exam
upvoted 3 times
...
RICHARDALEX007
1 year, 10 months ago
on exam March 2023
upvoted 2 times
...
niel93
2 years, 3 months ago
This question was on Sept 24th Scored 712 Selected the same answer
upvoted 1 times
...
Nyanne
2 years, 3 months ago
I would select option 1... Currently the data for Service Requests are available to ALL team members, meaning the level of access is too open, and needs to be restricted. Access Teams will not restrict access, nor will sharing the record. The only valid answer is option 1: Assign the record to a specific user who will work on the Service Request, and change the security role to basic level privileges (user level). That way only the user who the record has been assigned to will have access to the record. If the record needs to be accessed by other team members, then the owner can share the record to the relevant team members.
upvoted 4 times
allesglar
2 years, 2 months ago
I believe the answer is correct. Adding the team user doing the verification implies that the user will be removed from the access team after the verification and therefore he will lose his rights.
upvoted 4 times
...
Nyanne
2 years, 3 months ago
For Q1
upvoted 1 times
...
5600fed
1 year, 7 months ago
I read basic priviliges as the standard datavers role (self). In that case Basic User rights only works for standard (non custom) entities. As we are working with custom tables/entities I don't see this as a valid answer. If they would mention user permissions on the table, instead of the basic user then this could be a valid answer. I would go for access team even tough this question is not complete either because it doesn't mentioning limiting the permissions. However considering that basic user is wrong in my opinion in this case I would go for access teams.
upvoted 2 times
MrEz
11 months, 2 weeks ago
maybe you are referrring to basic user license (on the user record). but indeed 'table security to basic' is not very clear. 2) 'assign recordS' (plural) to a (1) service account and share the (1) record (not these, or the recordS), means sharing of the service-account .... werid... and how should this LIMIT access? 3) smells a bit if ms wants to test our awareness of access teams "assign (which) records to..." also, the sensible data is in the Qualification records (school degree, prof. qualifications) not in the service request nor (maybe) the name of the Account/Contact record (unless it is about patient of a med. psychiatrist you don't want everyone to know...)
upvoted 1 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel