AD0-E103 Exam QuestionsBrowse all questions from this exam

AD0-E103 Exam - Question 50


In which two ways can a developer keep simple and maintainable CRX Access Control Lists? (Choose two.)

Show Answer
Correct Answer: BC

To keep CRX Access Control Lists simple and maintainable, best practices suggest using Deny statements sparingly because excessive use of Deny statements can cause unintended conflicts and complexities, especially when users are in multiple groups. Additionally, assigning access rights to user groups rather than individual users is recommended because managing a smaller number of groups is simpler and more efficient than managing numerous individual users.

Discussion

5 comments
Sign in to comment
pkg82Options: BC
Jun 17, 2020

should be B, C

gkay2Options: BC
Jul 18, 2020

Correct answer is B and C

mandavaOptions: BC
Jun 10, 2020

Shouldn't be B&C ?

chunpinOptions: BC
Jan 8, 2021

B and C: The following are recommendations about managing access control lists: Do not assign permissions directly to users. Assign them only to groups. This will simplify the maintenance, as the number of groups is much smaller than the number of users, and also less volatile. If you want a group/user to be able only to modify pages, do not grant them create or deny rights. Only grant them modify and read rights. Use Deny sparingly. As far as possible use only Allow. Using deny can cause unexpected effects if the permissions are applied in a different order than the order expected. If a user is a member of more than one group, the Deny statements from one group may cancel the Allow statement from another group or vice versa. It is hard to keep an overview when this happens and can easily lead to unforeseen results, whereas Allow assignments do not cause such conflicts. Adobe recommends that you work with Allow rather than Deny Reference: https://experienceleague.adobe.com/docs/experience-manager-65/administering/security/security.html?lang=en#managing-permissions

BatyaOptions: BC
Jan 19, 2022

should be B, C