Salesforce Exam Heroku Architect Topic 7 Question 21 Discussion

Actual exam question for Salesforce's Heroku Architect exam

Question #: 21
Topic #: 7

Universal Containers (UC) has a Heroku Postgres database attached to a Heroku app, which is running in the Common Runtime.

What should an Architect recommend UC do to secure their database to only trusted locations?

AMove the database and the app into the Private Space.

BAdd a Trusted IP range tothe Heroku Postgres configuration.

CSet up a VPN from the trusted locations to the app.

DSet up a VPC in a one-off dyno when access to Heroku Postgres is needed.

Show Suggested Answer

Suggested Answer: D

by Helga at Jul 28, 2023, 10:43 PM

Limited Time Offer

25%

Off

Get Premium Heroku Architect Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Dalene

6 days ago

Option B seems the most straightforward approach to secure the database. Limiting access to trusted IP ranges is a simple and effective way to restrict access.

upvoted 0 times

...

Gabriele

8 days ago

I see both points. However, I think setting up a VPN from the trusted locations to the app, as mentioned in option C, would provide a secure connection while allowing access from specific locations.

upvoted 0 times

...

Danica

9 days ago

I disagree with Pearlie. I believe option B is more practical. Adding a Trusted IP range to the Heroku Postgres configuration will restrict access to only trusted locations.

upvoted 0 times

...

Pearlie

19 days ago

I think option A is the best choice. Moving the database and app into a Private Space will provide the highest level of security.

upvoted 0 times

...