Security: Scenario 4

Scenarios are free-form exercises that are designed to be practiced as if you were the system administrator responsible for an implementation.  Try to solve the scenario in your practice org (see Getting Started – Free if you do not have a practice org).  Once solved, or if you need help, turn the page for the solution.


The marketing team would like a queue to store leads that must be reviewed and then manually assigned.  Only the marketing team should be able to view or edit leads within the queue.

You may want to edit your test user several times to test this scenario.

Once you have completed the configuration to meet the goals outlined by the scenario, you will want to test the results.  To do this, edit your test user, and change the role and profile to a marketing user.  Then login and test as that user.  Once complete, logout.

Then, edit the test user again, changing the role and profile to a sales user.  Then test as that user.  Logout once complete.

Success Criteria:

  1. [Test as profile “Marketing User” and any marketing role]
    Marketing users can reassign leads from the marketing queue to other users.
  2. [Test as profile “Inside Sales” (or “Standard User”) and any sales role]
    Users outside of the marketing role hierarchy cannot view leads within the marketing queue.
Scenario Solution

12 Responses to “Security: Scenario 4”

  1. mcpacific August 21, 2016 at 1:33 am #

    I’ve seemed to have done it correctly and I understand the concepts, but after the user creates the lead he has to manually change the ownership to the queue. It seems that an approval process could also be added (beyond the scope of this section) with only VP Marketing or above with the ability to assign the lead.

    The scenario seems a bit simplistic but I suppose it’s a good exercise for the concepts outlined.

  2. Munira Majmundar October 7, 2015 at 6:22 pm #

    Security Scenario # 4 was a curve ball.

    I just did not understand that in order to do the exercise, I had to take into account the object/record permissions on Lead. I kept on going through the motions of creating a queue, assigning it to a test user, and assigning different profile/role combination to the test user as suggested in the Scenario. Despite all this, everyone in the organization could accept/see the Leads in the Queue 🙁

    After an hour’s struggle, ended up looking at the solution; now, going back to it and trying to walk step-by-step to absorb the concept.

    I think this is a great exercise; however, exposure to the material, specific to the scenario, is missing 🙁

    • JohnCoppedge October 22, 2015 at 4:03 am #

      Org-wide defaults! 🙂 I’ll think about this to see if I can make this more clear.

      • Munira Majmundar October 22, 2015 at 4:12 am #

        Actually, it was a great cryptic (test question – 20/20 hindsight :).

        Your following chart is very clear and to the point (great/amazing etc.)

        Create Record View Record Edit Record Delete Record
        Object-Level Permission Create Read Edit Delete
        Record-Level Permission N/A Read Only Read/Write Full Access

        It is just that connecting the dots is harder when one is trying to grasp so many concepts (and have a sword of ADM201 Certification on one’s head 😉

        Really great site… I would have liked more practice questions! I recommend your site at every opportunity I get!! Thank you for such a valuable service!

        • JohnCoppedge November 9, 2015 at 5:58 pm #

          Awesome glad you are enjoying it and spreading the word! Yes that is the hardest part about 201- you need to get a pretty expansive base of knowledge before you can you can understand how it all fits together.

  3. July 27, 2015 at 9:25 am #

    it would be great if we could find this information here related to the topic instead of gathering data from different topics..thanks

  4. Emily Young September 28, 2014 at 11:28 pm #

    I understood generally what a queue is, and was able to create a queue. However, I didn’t know how to route leads to that queue.

  5. Mugdha Ralegaonkar July 18, 2014 at 8:05 pm #

    Its included in the guide. check the heading ‘queue overview’ under this link:

  6. Larry Deckel September 29, 2013 at 12:00 am #

    Working through this material, in order… there has been no mention of queues yet (that I recall seeing). Perhaps a post on how to construct queues, and their function, would be appropriate before one is presented this security scenario.

    • Gary Weidner July 14, 2014 at 7:29 am #

      I agree, I cannot recall anything specific that has been mentioned about queues yet.

    • Candace Carpenter July 16, 2014 at 4:47 pm #

      I also vote to add something about Queues ahead of this exercise. I didn’t really “get it” because I don’t understand what the queues are.

Leave a Reply