CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Salesforce
  5. Certified Identity and Access Management Architect

Free Certified Identity and Access Management Architect Exam Braindumps (page: 19)

Page 18 of 62
PDF with 248 Questions

Universal Containers (UC) is planning to deploy a custom mobile app that will allow users to get esignatures from its customers on their mobile devices. The mobile app connects to Salesforce to upload the e-signature as a file attachment and uses OAuth protocol for both authentication and authorization. What is the most recommended and secure OAuth scope setting that an Architect should recommend?

  1. Id
  2. Web
  3. Api
  4. Custom_permissions

Answer(s): D



IT security at Universal Containers (UC) us concerned about recent phishing scams targeting its users and wants to add additional layers of login protection. What should an Architect recommend to address the issue?

  1. Use the Salesforce Authenticator mobile app with two-step verification
  2. Lock sessions to the IP address from which they originated.
  3. Increase Password complexity requirements in Salesforce.
  4. Implement Single Sign-on using a corporate Identity store.

Answer(s): A



Universal Containers (UC) has an existing web application that it would like to access from Salesforce without requiring users to re-authenticate. The web application is owned UC and the UC team that is responsible for it is willing to add new JavaScript code and/or libraries to the application. What implementation should an Architect recommend to UC?

  1. Create a Canvas app and use Signed Requests to authenticate the users.
  2. Rewrite the web application as a set of Visualforce pages and Apex code.
  3. Configure the web application as an item in the Salesforce App Launcher.
  4. Add the web application as a ConnectedApp using OAuth User-Agent flow.

Answer(s): A



Universal containers wants to implement SAML SSO for their internal salesforce users using a thirdparty IDP. After some evaluation, UC decides not to set up my domain for their salesforce.org. How does that decision impact their SSO implementation?

  1. Neithersp - nor IDP - initiated SSO will work
  2. Either sp - or IDP - initiated SSO will work
  3. IDP - initiated SSO will not work
  4. Sp-Initiated SSO will not work

Answer(s): D






Post your Comments and Discuss Salesforce Certified Identity and Access Management Architect exam with other Community members:

Certified Identity and Access Management Architect Discussions & Posts