Roles HRSD

Irene Barranco
Tera Contributor

‎10-03-2022 08:40 AM

Hi,

I am preparing the CIS-HR Certification and I have the following doubts:

 

1. If a person has both Admin and HR Admin role, and he needs to create an ACL for Payroll case table. Select one option that apply:

A. In the banner, click on user profile and elevate security admin role

B. Admin should grant Security admin role manually before elevating the role

C. He/she can create ACL’s directly

 

2. If you have both Admin and HR Admin roles and wanted to configure an Access Control for the Employee Relations Cases table, what must first be done?
A . Add the Delegated Developer role to your User record
B . From the User dropdown in the banner, elevate your role to security_admin
C . Manually add the security_admin role to your User record
D . Nothing would need to be done

 

Where I could find the theory about it?

 

Thank you

Labels:
0 Helpfuls
  • 1,350 Views
4 REPLIES 4

sachin_namjoshi
Kilo Patron
Kilo Patron

‎10-03-2022 08:51 AM

Following are the answers:

1. If a person has both Admin and HR Admin role, and he needs to create an ACL for Payroll case table. Select one option that apply:

A. In the banner, click on user profile and elevate security admin role

B. Admin should grant Security admin role manually before elevating the role

C. He/she can create ACL’s directly

 

---> Answer is B since admin should have a security admin role before creating ACL.

 

2. If you have both Admin and HR Admin roles and wanted to configure an Access Control for the Employee Relations Cases table, what must first be done?
A . Add the Delegated Developer role to your User record
B . From the User dropdown in the banner, elevate your role to security_admin
C . Manually add the security_admin role to your User record
D . Nothing would need to be done

 

--> Manually add the security_admin role to your User record provided the logged in user  has secruity_admin role because only user with security_admin role can give this role to another admin.

 

Regards,

Sachin

 

Anil Lande
Kilo Patron

‎10-03-2022 08:52 AM

Hi,

You can get an answer by yourself. Try to create same scenario in your PDI.

Create one user and grant him both roles. Then see if he can create ACL's. If not then grant 'security_admin' role.

 

I don't mind sharing answer but finding it by doing small exercise will help your learn it.

 

Thanks,
Anil Lande

Please appreciate the efforts of community contributors by marking appropriate response as correct answer and helpful, this may help other community users to follow correct solution in future.
Thanks
Anil Lande

Irene Barranco
Tera Contributor
In response to Anil Lande

‎10-04-2022 09:29 AM

Hi,

 

Thank you for your advice.

 

I did it but I continue with doubts:

Everybody says that the correct answer to question 1 is B but in the PDI I have both roles (so I have the Admin role) and If I elevate my role to security_admin I can access ACLs. The correct answer is A.

 

In the question 2, everybody says that the correct answer is C but you can elevate your role to security_admin directly from the User dropdown.

 

I really would like to understand this point. Could you help me about it?

 

Thanks 

Best regards,

Irene

0 Helpfuls

Anil Lande
Kilo Patron
In response to Irene Barranco

‎10-04-2022 10:30 AM

Hi,

By default only System Administrator (user id - admin) have security_admin role. If you grant 'admin' role to any other user. that user will not get/inherit security admin role.

It needs to be given explicitly to user by elevating role. That's why B option for question 1 is correct and C option for question 2 is correct. Without adding security_admin role manually to user he/she will not be able to elevate role.

 

Thanks,
Anil Lande

Please appreciate the efforts of community contributors by marking appropriate response as correct answer and helpful, this may help other community users to follow correct solution in future.
Thanks
Anil Lande
0 Helpfuls