Users: Quiz

These questions are designed to be similar to ones that will be asked on certification exams.  Aim to get most of these questions correct on the first attempt.
To view the remainder of this content, you must register for a free account.  Please Login or Sign Up.

96 Responses to “Users: Quiz”

  1. katezhukova December 5, 2017 at 4:34 pm #

    Hi John,

    Can you please help me understand the answer to question #1? I thought it would be both B and C. I thought computer activation was also required when a user did not log in from a Trusted IP range. If a Trusted IP range is incorrectly configured, then Mary did not log in from a Trusted IP range.

    What am I getting wrong?


    • kanderson32 December 5, 2017 at 10:01 pm #

      Kate – The reason it’s not B is that the person is traveling. They are not logging in to the same IP range or really a known IP range. Trusted IPs only work with that IP is known and stored. With somebody that travels there is no way an Admin would know every IP she might happen to use. it’s impossible. Therefore, if she is always using the same browser and computer, a stored cookie would fix this.

      • kanderson32 December 5, 2017 at 10:02 pm #

        Sorry, i meant the reason it’s not C!

      • katezhukova December 6, 2017 at 5:22 pm #

        That makes a lot of sense! Thank you so much!

  2. mitchand May 12, 2017 at 5:18 pm #

    Got 75% correct in first go. 🙂 Thanks for the close and tricky options.

  3. kmkaast March 7, 2017 at 11:24 am #

    Can you advice about more trails i can do on trailhead to train on this module , i am still need more practicing .

  4. kmkaast March 7, 2017 at 11:23 am #

    good job .. tricky questions .. i got a great info just by reading your replies on the comments.

  5. McFarland March 2, 2017 at 3:44 pm #


    What’s the difference between locale and time zone? Does locale mean the format of the date & time? Or is the locale the location?

  6. piyushsharma09 January 29, 2017 at 1:58 am #

    If logging in from Trusted IP range= No computer activation(Browser), No security Tokens(API)
    If logging in from Public IP range= Computer activation(Browser), Security tokens required(API)

    Activated Browser but Fresh IP address=Login Successful
    Activated IP address but Fresh browser(Not activated)= Login Successful
    Browser not activated and IP address never used for SF= will the login be successful..?

    browser activation and IP address activation are different.?
    Cookies are browser dependent/Independent. Can one cookie be used for different browsers?

    • JohnCoppedge February 16, 2017 at 12:33 am #

      Cookies are tied to the browser; they are not shared in multiple browsers on the same computer.

      There was a change to how activation is processed and IP address is not always considered… that said:

      Trusted IP = no activation… correct
      Public range= activation, tokens… correct

      Activated browser (cookie stored) = no activation
      Activated IP…. could result in activation

      Yes, there is a difference between browser activation and a successful IP connection

  7. piyushsharma09 January 29, 2017 at 1:47 am #

    I do lot of cross country journey. Do i need to update my time on records every time or it gets refreshed of its own. Where do i need to update this time..? on company profile page( Time zone i am currently in)
    Please specify the field to be updated as i am confused.

  8. piyushsharma09 January 29, 2017 at 1:24 am #

    Hi John,

    Can you please clarify ” login hours use default time zone”. .?
    I work for company based in USA, however I work from India. so, my login hours would be different from the team working in USA. Login hours are set on profile…?
    Default time zone (USA) or (INDIA)..?

  9. sneha06 July 10, 2016 at 2:23 pm #

    Hi John,

    Regarding Q3 could you please explain why “Translation must be configured for custom objects, tabs, fields, and picklist values.” is needed. Because it is not clear to me in which language the custom objects are??

    • eddiegcs July 15, 2016 at 4:26 pm #

      Custom objects, custom tabs, custom fields and custom picklist values will be in the org’s default language and are not automatically translated. Ergo, they must be translated manually (using Translation Workbench, I think) into the local language or they will remain in the default language, presumably English for a US-based company.

  10. July 6, 2016 at 8:13 am #

    i got number 3 wrong, “Translation must be configured for custom objects, tabs, fields, and picklist values. ”

    Is this true!

  11. mhabes0737 April 30, 2016 at 10:15 pm #

    I got number 3 wrong because it stated that the conversion rates can be static at launch. Given that they can be static, I assumed #4 would not be a correct answer as to me, the term “static” indicated that the dated rates were not in play i.e. the rates are static from day to day. Did I read or interpret the term “static” wrong in this case?

    • JohnCoppedge August 19, 2016 at 7:44 pm #

      you’re correct and the question is marked correctly, advanced currency management is not one of the correct answers

      • bthurber November 2, 2016 at 11:55 am #

        It is possible the quiz isn’t working right for question 3. I selected (b) and (c) as my answers but the quiz feedback is acting as though I selected (d).

  12. al363523 April 27, 2016 at 6:50 pm #


    As of the Spring ’16 release, wouldn’t the answer to Q1 be A: ‘this is normal and expected behavior’?

    • JohnCoppedge April 29, 2016 at 1:27 am #

      No – computer activation is still bypassed by a cookie on the browser (IP addresses no longer will bypass activation)

      • bilabongster June 28, 2016 at 6:02 am #

        I also answered that it is normal behavior. Is computer activation required everytime on same laptop?

        • eddiegcs July 15, 2016 at 4:30 pm #

          Not if the cookie from the last logon to Salesforce is correctly stored in your browser and you use the same browser. If your browser settings automatically expire cookies after a certain time, for example, and you try to login to Salesforce from the same browser and laptop on which the original cookie has expired or otherwise been deleted, then you would need to authenticate again. If the cookie is still active, you should not have to activate. Make sense? Is that correct, John?

  13. Sudheendra Karri November 26, 2015 at 12:48 am #

    Curious on how we configure LOGIN IP ranges by profile.

    Navigating to Manage users – Profile and editing a profile does not show a way I can set up IP ranges anywhere

  14. pook918 October 17, 2015 at 7:43 pm #

    Clarifying question (for my tiny brain):
    Once you activate/configure the Login IP range, does that
    1) prevent all logins from users outside that range or
    2) prevent initial logins from users outside that range until they use an authentication code?


    • JohnCoppedge October 22, 2015 at 3:32 am #

      Login IP range = PREVENT access from outside of that range.

      Trusted IP range = allow access without verification within a range (no prevention).

  15. Munira Majmundar September 20, 2015 at 5:15 am #

    Q4 tripped me 🙁

    The correct answer is:
    Add the company’s public IP range(s) to the list of Login IP Ranges on the customer service reps’ profile.

    Is there a difference between Company’s Public IP Range and Trusted IP Range? Aren’t these two the same?

    • JohnCoppedge September 21, 2015 at 8:17 pm #

      The company’s public IP range would refer to the list of addresses that a company would initiate an outbound connection FROM. (e.g.

      The Trusted IP Range would be where you input this list in order for Salesforce to treat those connecting addresses as ‘trusted’.

      • MEGAN92 October 11, 2015 at 10:14 pm #

        Excellent explanation. Thank You ! 🙂

  16. daniele.graziano June 18, 2015 at 6:57 am #

    Suppose we have login hour 08:00am-07:00pm from Mon to Fri).
    Login Hours impact my Time (for example I’m connecting now from Italy at 9:00am) or the org Time (for example New York Time is 03:00pm)?

    • JohnCoppedge June 23, 2015 at 8:47 pm #

      Login hours will use the default time zone, the message I see above login hours configuration is: “All times are in (GMT-07:00) Pacific Daylight Time (America/Los_Angeles)”

  17. NicoleVVogel May 19, 2015 at 8:02 pm #

    Question three is saying I got it incorrect even though I selected the correct 3 answers. It is auto – selecting the third answer. Even though I picked 1, 2, & 4 as the answers.

    • JohnCoppedge May 20, 2015 at 9:15 pm #

      I’m not following – if you selected the 3 correct answers, it would mark the question as correct. Anything else it would mark the question as wrong. Are you sure you selected the correct 3?

  18. sksood May 18, 2015 at 9:40 pm #

    Excellent questions and answers. I tripped up on the last question but the answers helped

    Thanks John


  19. Agyasi Ampah April 30, 2015 at 1:43 pm #

    Hi John
    what happens to the users work if he is in the middle of a session and his login hours restriction expires.
    is he automatically logged out and work saved or can he carry on working?

    • JohnCoppedge April 30, 2015 at 4:21 pm #

      Logged out

      • CarlosSiqueira May 22, 2016 at 9:31 pm #

        Logged out, but what about his work? Is saved or lost?


        • JohnCoppedge May 23, 2016 at 12:59 pm #

          Whatever action was taken past the login hours (e.g. saving a record) would be lost

    • resser1 December 16, 2016 at 4:56 pm #

      I have doubts about the statement that they will be logged out. According to the Salesforce documentation: “If users are logged in when their login hours end, they can continue to view their current page, but they can’t take any further action.” This is at:

      • JohnCoppedge December 16, 2016 at 11:15 pm #

        Right – so if they click “save” after login hours they will get logged out and the save will not take place.

        If they leave a page open (do nothing) the logout is not automatic; taking any action (e.g. view page) will trigger the log out.

  20. Krishna Kumar Senathi April 4, 2015 at 9:17 am #

    quiz is not accessible for me

  21. Stacey Martin March 5, 2015 at 5:34 pm #

    None of the Quiz buttons are working on any of the sections, please fix!

  22. Kevin Parsakia February 2, 2015 at 5:03 pm #

    I got stumped on #3 because I didn’t realize that answer 1 and 4 are pretty much the same, except SF calls it ACM. At least I’m assuming that’s why I got it wrong. Thanks for posting these really good test questions.

    • JohnCoppedge February 3, 2015 at 4:55 pm #

      1 and 4 are different features. Multi-currency allows you to capture more than one currency using static conversion rates.
      E.g. 1 GBP is ALWAYS = 1.5 USD

      Advanced currency management (for which multi-currency being enable is a pre-req) will allow you to used dated exchange rates.

      1 GBP from 1/1/15 to 2/1/15 = 1.5 USD
      1 GBP from 2/2 to 3/1 = 1.52 USD


  23. Barry Palmer January 25, 2015 at 1:26 am #

    The quiz is not accessible.

  24. Andres Garcia January 15, 2015 at 7:12 pm #

    Hi John,,
    My question is…If we have IP Ranges…how can we limit the IP address by Role? the answer for Question 4 is mentioning that we can do that, but I didn’t find the functionality in SFDC. Or the proper answer is to have various Trusted IP ranges per role, (e.g Sales, Customer Care, Marketing, etc), using ‘Network Access’ Thank you for you attention,

  25. Mayank Srivastava November 21, 2014 at 11:12 pm #

    Or for that question, should we assume that the trusted IP ranges aren’t configured at all?

    • JohnCoppedge November 21, 2014 at 11:17 pm #

      Probably safe to assume trusted ip ranges are not configured, as this would be the default, and the question does not specify otherwise.

      However, Mary is a sales rep that ‘travels frequently’ then she would almost certainly be connecting outside of traditionally trusted networks (e.g. hotels, client sites, etc. – traditionally a trusted network would be a corporate office or similar location).

  26. Mayank Srivastava November 21, 2014 at 11:11 pm #

    For question 1, is Mary accessing salesforce from the location within the Trusted IP range specified in her org?

    If yes, then Option 2 is the right answer.
    If no, shouldn’t Option 3 be the right answer?

    My concern is that if you use the same device and the same browser outside the trusted IP ranges, wouldn’t you be prompted for the activation code every single time?

    • JohnCoppedge November 21, 2014 at 11:14 pm #

      No, you wouldn’t. You’d only be prompted if you hadn’t activated that browser previously or had not connected from that IP address previously – and in both cases, you would need to be outside of a trusted IP range as well.

  27. Donald Bohrisch November 20, 2014 at 3:02 am #

    Not being NitPicky… just working towards improving a tool which I highly appreciate so far.
    “In order for the Berlin office be effective” on Question 3 SHOULD be “In order for the Berlin office TO be effective”

  28. Mickael Gueron November 16, 2014 at 8:21 pm #

    Oh Yeah! 100% 🙂

  29. Andrew Mayes October 16, 2014 at 7:45 pm #

    John, you might’ve already addressed this but on question 4 it seems to me that “adding” the login ip range would not limit them from home but is that possibly a setting to be activated on the customer service reps profile page? Or would it be better to say that only having that ip range as a login option? (i understand what youre trying to accomplish on testing our knowledge but the wording was confusing to me)

    • JohnCoppedge October 19, 2014 at 3:03 am #

      Adding the login ip range would prevent the CSRs from logging in from home. When no login ip range is present, users can login from anywhere (default setting). When login ip ranges are added, users can only connect within specified range(s). Does that clarify?

  30. James Thornburg July 9, 2014 at 2:21 am #


    I think question 4 may be misleading. There should be a note that the customer service reps don’t have access to vpn. Not trying to be nitpicky. 🙂


    • James Thornburg July 9, 2014 at 2:26 am #

      forget it. I just reread the question

  31. gera;d dente June 3, 2014 at 10:11 pm #

    Question 4 forces me to give the wrong answer. I answered correctly and it shows the second question is what I selected.

    • JohnCoppedge June 10, 2014 at 11:48 pm #

      The second answer is the correct answer – did you select this answer? It is probably highlighting that answer to show that it is correct…

  32. Renuka Chopra May 7, 2014 at 4:07 am #

    For question 4 if we put company’s IP address in trusted IP address still they can’t access at home. Am I right?

    • JohnCoppedge May 10, 2014 at 10:07 pm #

      If the company’s IP addresses are specified within LOGIN IP Ranges, then the users will not be able to login from home.

      Trusted IP ranges will not prevent authentication (simply removes barriers to authentication such as a security token).

  33. ghazala malik March 31, 2014 at 5:24 pm #

    why could not answer 3 be correct? would login hours not be effective in this scenario?

    • JohnCoppedge April 11, 2014 at 4:48 pm #

      For which question?

    • Aaron Howerton June 5, 2014 at 3:20 pm #

      Hi Ghazala – Login hours would only limit the time of day employees could log in, not the location from which they can gain access. Ergo, if an employee is home sick or trying to work from home, they could still log in during the specified time frame set by login hours.

  34. JohnCoppedge March 7, 2014 at 3:41 am #


    Trusted up range will bypass identity confirmation (allow more access from those ip addresses), while login ip ranges actually prevents logins except from a specific range (if not within set of ip range, prevent login). Does that make sense?

  35. Chuck Knowles March 3, 2014 at 9:10 pm #

    hi – could you explain the reason between question 4, answer being correct is”Add the company’s public IP range(s) to the list of Login IP Ranges on the customer service reps’ profile.” … vs Add the company’s public IP range(s) to the list of Trusted IP Ranges.

    it’s login ip’s vs trusted ip’s ?

  36. Aby Ouseph February 18, 2014 at 6:36 am #

    what could happen in below scenario? Co.s trusted IP Range is [ xxx.100 – xxx.300 ]. Sales team profile login ip range is assigned from xxx.100- xxx.200 and marketing profile’s login ip range is from xxx.201- xxx.300. can a sales rep login from a marketing users machine (e.g. ip xxx.250) ?

    • JohnCoppedge February 19, 2014 at 5:16 am #

      I’m not 100% on this- but I’m fairly sure that the IP range would override the trusted IP range.

      E.g. The sales team would not be able to login.

      I would have to test this specific scenario; I’m not sure if the documentation addresses it specifically.

  37. Raman Gordon February 4, 2014 at 1:01 am #

    Can the answer to Question 2 be the last option ?
    And if not , why not.

    IMO it could be either 3 or 4

    • JohnCoppedge February 10, 2014 at 4:14 am #

      Hi Raman – the time zone set on the local computer will not change the the time zone as displayed by Salesforce; this must be changed via the user settings in Salesforce.

      • Palas Mullick February 18, 2014 at 1:08 am #

        It should be via personal setting of the user. Not through administrator. User can set the same on their own based the time zone.

        • JohnCoppedge February 19, 2014 at 5:11 am #

          Hi Palas – I didn’t specify who updates the user record. Yes, the user can update their own time zone, as can the administrator.

          • fogcitynative April 27, 2017 at 10:12 pm #

            I got it wrong because of the wording of the answers.

            3) The time zone on Jim’s user record needs to be updated to reflect the change in time zone.
            4) Jim needs to update the time zone on his laptop to reflect the change in time

            Because 3 did not explicitly state that Jim would be updating his own time zone setting.

            So I picked 4 because Jim would be using his laptop to update his time zone on his Salesforce profile.

            I know I am reading things into the questions that aren’t there, but you could make #4 obviously wrong by adding a word:

            Jim needs to update the (system) time zone on his laptop to reflect the change in time.

            In that case, even though it doesn’t say Jim will update his own user profile, #3 is the only possibly correct answer.

          • JohnCoppedge May 12, 2017 at 6:19 pm #

            That makes sense- I will take a look at updating next time around

  38. Nancy Ankone January 18, 2014 at 4:39 pm #

    Q4 you assume they dont work with laptops then? What if they do and bring iT with them back home? Will they be able to log in from home with their laptop?

    • JohnCoppedge January 18, 2014 at 9:03 pm #

      The computer they are using doesn’t really matter (unless their work laptop had VPN or remote access to the corporate network) – Salesforce is going to look at the IP address of the connecting computer and allow or reject login on this basis.

      The only way the (public) IP address could be different between two different computers on the same network is if one used VPN or another remote connectivity option to login via another network (e.g. VPN to corporate – this effectively changes the IP address that Salesforce sees).

      Does that make sense?

      • Dorothy Narvaez March 20, 2015 at 11:31 pm #

        Hi John – so if they do use a laptop with work VPN – then IP ranges don’t work? On work VPN they can login to salesforce from home?

        • JohnCoppedge March 22, 2015 at 7:58 pm #

          Using a VPN will just change the IP address that the connection to the internet is facilitated through. If you connect from your home without VPN you will connect using your home ip – if you connect from home using a VPN then typically you would connect using your work ip. If your company wanted to add a layer of security protection, they could prevent users from connecting outside of the corporate network (and give VPN access to connect to the corporate network when remote).

          • Theresa Nguyen July 31, 2015 at 3:20 am #

            Hi John,
            If the customer rep has a laptop with VPN and the company does not want client information visible outside of company range… how can you block that access as well? this probably doesn’t apply to real life scenarios but Im just curious. Thank you

          • JohnCoppedge August 5, 2015 at 2:23 am #

            Your network administrators would probably block access to when connected via the VPN (this sort of configuration is pretty standard within network administration).

  39. Siva October 17, 2013 at 4:00 pm #


    In View Questions page (after completing a quiz), the correct answers are highlighted in Green Color, which makes the text (in Gray color) to be invisible or unreadable. Can the color of the text be changed?


  40. Trevor April 7, 2013 at 7:11 pm #

    Question 3 is not recording correct answer even when I get the answer correct

    • JohnCoppedge April 8, 2013 at 12:48 pm #

      Hi Trevor,

      It looks to me like the question is set up correctly, I just retested. You need to select 3 answers for this question, although it should show after you complete the quiz. If that doesn’t work could you email a screenshot of the result to me?

Leave a Reply