A Platform Administrator at Universal Containers is asked to restrict login access for users to specific hours and specific IP addresses to help minimize the risk of bad actors getting into the org. Which setting should the administrator update to accomplish this?
Correct Answer: C
In Salesforce, security restrictions like Login Hours and Login IP Ranges are managed at the Profile level.
When these are configured on a profile, they are strictly enforced; if a user attempts to log in outside of the allowed hours or from an unauthorized IP address, the system will deny access entirely. This is one of the most robust ways to secure an organization against unauthorized access. Company Settings (Option A) can set
"Trusted IP Ranges" for the whole org, but these only bypass multi-factor authentication; they do not restrict login. Roles (Option B) control record visibility, not system access. While Permission Sets (Option D) can grant many permissions, Login Hours and IP Ranges remain a core profile-level security setting.