You have two Microsoft Power Platform environments.
Users in one environment must not be able to see the other environment.
You need to grant salespeople access to the sales company environment.
What should you do?
You have two Microsoft Power Platform environments.
Users in one environment must not be able to see the other environment.
You need to grant salespeople access to the sales company environment.
What should you do?
To grant salespeople access to the sales company environment while ensuring they cannot see the other environment, you should add them to a security role. Security roles in the Power Platform define what data and functionality users can access within a specific environment. By assigning the appropriate security role to the salespeople, you control their permissions and ensure that they can only see and interact with the sales company environment.
Correct
B. Add salespeople to a security role. - By adding salespeople to a specific security role within the sales company environment, you can control their access and permissions within that environment. The security role defines the privileges and restrictions that users have in terms of accessing and manipulating data and functionality within the environment. Adding salespeople to a security role ensures that they have the necessary permissions to perform their job functions within the sales company environment while maintaining the separation and isolation between the two environments, preventing users from one environment from seeing the other. Option A - Adding salespeople to an Office 365 security group - may be useful for managing access to other Office 365 resources but is not specifically tied to controlling access within the Power Platform environments.
My read on this one is that once a user is in the environment, you can add them to a security role--but just adding a group of users to a security role does not prevent OTHER users from seeing the environment. Adding users to a security group and assigning it to the environment, however, does. From the cited doc: When a security group is associated with an existing environment with users, all users in the environment that are not members of the group will be disabled. The way I read it, adding users to the M365 group DOES immediately prevent anyone who's not in that group from seeing the environment, which is the core goal of the question.
Sorry guys I think you're wrong on this one. Environments = SEC ROLE Adding users to some 365 security group may not have anything to do with security on an environment. It's not the way environments are secured. My answer = B Adding users to an environment security role IS a solution.
I had to re-read this. "Group" is the operative word. Answer = A
Add salespeople to a security role.
A is not the complete answer, but rather the first step of granting salespeople access to the environment. You add them to a security group, then you assign a security role to its members, or to the entire SG. https://learn.microsoft.com/en-us/power-platform/admin/control-user-access
To grant salespeople access to the sales company environment and ensure users from one environment cannot see the other, you should consider using: B. Add salespeople to a security role. Explanation: Add salespeople to a security role (Option B): Security roles in the Power Platform allow you to define sets of permissions for users. By adding salespeople to a specific security role in the sales company environment, you can control their access to data and functionality within that environment. This helps ensure that users in one environment cannot see or access data in the other. Options A, C, and D may not directly address the requirement to restrict visibility between environments:
Was on my exam -8/1/23
Answer is 'A' as we can control access using the O365 security groups. REF: https://learn.microsoft.com/en-us/power-platform/admin/control-user-access
Setting up groups on every environment, you can just add/remove users from one group to another and they will get the access automatically
B. Add salespeople to a security role Security roles in Power Platform define what actions a user can perform and what data they can interact with. By adding the salespeople to a security role that has access to the sales company environment, you can ensure they have the necessary permissions. This method also ensures that users in one environment cannot see the other environment, as security roles are specific to the environment they are created in. Office 365 security groups (Option A) can be used to manage user access at a higher level, they are not environment-specific. Options C and D involve setting privileges and app security, which are components of a security role, but do not directly add users to an environment. Therefore, these options might not fully meet the requirements.
A is the answer
To grant salespeople access to the sales company environment and ensure users from one environment cannot see the other, you should consider using: B. Add salespeople to a security role. Explanation: Add salespeople to a security role (Option B): Security roles in the Power Platform allow you to define sets of permissions for users. By adding salespeople to a specific security role in the sales company environment, you can control their access to data and functionality within that environment. This helps ensure that users in one environment cannot see or access data in the other. Options A, C, and D may not directly address the requirement to restrict visibility between environments:
I thought it was B at first, but it is 100% A When users are added to the security group, they are added to the environment.
The answer at the seminar is D.
This question was on Sept 24th Scored 712 Selected: A
On Exam Sept 9th, 2022