Free Preparation Discussions
MENU
Salesforce Certified Identity and Access Management Architect Exam
- Topic 1: Given a scenario, recommend appropriate Scope and Configuration of the connected App for Authorization/ Given a scenario, determine when to use embedded login
- Topic 2: Given a scenario, describe what tools you can apply to audit and verify the activity/user during and after login/ Describe how trust is established between two systems
- Topic 3: Describe the various implementation concepts of OAuth/ Describe the building blocks that are part of an identity solution
- Topic 4: Describe the capabilities for customizing the user experience for Experience Cloud/ Given a scenario, identify the most appropriate OAuth flow
- Topic 5: Describe common authentication patterns and understand the differences between each one/ Given a scenario, identify the configuration settings for a Connected app
- Topic 6: Given a scenario identify if Salesforce Customer 360 Identity fits into a fully developed Customer 360 solution/ Given a use case, describe when Salesforce is used as a Service Provider
- Topic 7: Given a scenario, recommend the most appropriate way to provision users from identity stores in B2E and B2C scenarios/ Recommend the appropriate method for provisioning users in Salesforce
- Topic 8: Given a requirement, understand the advantages and limitations of External Identity solutions and associated licenses/ Identify the role Identity Connect product plays in a Salesforce Identity implementation
- Topic 9: Identify the ways that users can be provisioned in Salesforce to enable SSO and apply access rights/ Identify the auditing and monitoring approaches available on the platform
- Topic 10: Troubleshoot common points of failure that may be encountered in a single sign-on solution/ Describe the tools that are available to diagnose IdP issues
Free Salesforce Salesforce Certified Identity and Access Management Architect Exam Actual Questions
The questions for Salesforce Certified Identity and Access Management Architect were last updated On Apr. 13, 2024
Northern Trail Outfitters (NTO) has an off-boarding process where a terminated employee is first disabled in the Lightweight Directory Act Protocol (LDAP) directory, then requests are sent to the various application support teams to finish user deactivations. A terminated employee recently was able to login to NTO's Salesforce instance 24 hours after termination, even though the user was disabled in the corporate LDAP directory.
What should an identity architect recommend to prevent this from happening in the future?
Universal Containers is creating a web application that will be secured by Salesforce Identity using the OAuth 2.0 Web Server Flow uses the OAuth 2.0 authorization code grant type).
Which three OAuth concepts apply to this flow?
Choose 3 answers
Northern Trail Outfitters mar ages functional group permissions in a custom security application supported by a relational database and a REST service layer. Group permissions are mapped as permission sets in Salesforce.
Which action should an identity architect use to ensure functional group permissions are reflected as permission set assignments?
An Enterprise is using a Lightweight Directory Access Protocol (LDAP ) server as the only point for user authentication with a username/password. Salesforce delegated authentication is configured to integrate Salesforce under single sign-on (SSO).
Mow can end users change their password?
Universal Containers wants to secure its Salesforce APIs by using an existing Security Assertion Markup Language (SAML) configuration supports the company's single sign-on process to Salesforce,
Which Salesforce OAuth authorization flow should be used?
- Select Question Types you want
- Set your Desired Pass Percentage
- Allocate Time (Hours : Minutes)
- Create Multiple Practice tests with Limited Questions
- Customer Support
Submit Cancel
Currently there are no comments in this discussion, be the first to comment!