Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. Salesforce
  5. Certified Identity and Access Management Designer

Salesforce Certified Identity and Access Management Designer Exam
Certified Identity and Access Management Designer (Page 7 )

Updated On: 9-Feb-2026
Page 7 of 48
PDF with 230 Questions

Universal Containers (UC) wants to build a few applications that leverage the Salesforce REST API. UC has asked its Architect to describe how the API calls will be authenticated to a specific user.
Which two mechanisms can the Architect provide? Choose 2 Answers

  1. Authentication Token
  2. Session ID
  3. Refresh Token
  4. Access Token

Answer(s): C,D



Universal Containers (UC) has an existing web application that it would like to access from Salesforce without requiring users to re-authenticate. The web application is owned UC and the UC team that is responsible for it is willing to add new javascript code and/or libraries to the application.
What implementation should an Architect recommend to UC?

  1. Create a Canvas app and use Signed Requests to authenticate the users.
  2. Rewrite the web application as a set of Visualforce pages and Apex code.
  3. Configure the web application as an item in the Salesforce App Launcher.
  4. Add the web application as a ConnectedApp using OAuth User-Agent flow.

Answer(s): A



A technology enterprise isplanning to implement single sign-on login for users. When users log in to the Salesforce User object custom field, data should be populated for new and existing users.

Which two steps should an identity architect recommend?

Choose 2 answers

  1. Implement Auth.SamlJitHandler Interface.
  2. Create and update methods.
  3. Implement RegistrationHandler Interface.
  4. Implement SesslonManagement Class.

Answer(s): A,B



An architect needs to advise the team that manages the identity provider how to differentiate salesforce from other service providers.
What SAML SSO setting in salesforce provides this capability?

  1. Entity id
  2. Issuer
  3. Identity provider login URL
  4. SAML identity location

Answer(s): A



Universal Container's (UC) identity architect needs to recommend a license type for their new Experience Cloud site that will be used by external partners (delivery providers) for reviewing and updating their accounts, downloading files provided by UC and obtaining scheduled pickup dates from their calendar.

UC is using their Salesforce production org as the identity provider for these users and the expected number of individual users is 2.5 million with 13.5 million unique logins per month.

Which of the following license types should be used to meet the requirement?

  1. External Apps License
  2. Partner Community License
  3. Partner Community Login License
  4. Customer Community plus Login License

Answer(s): D






Post your Comments and Discuss Salesforce Certified Identity and Access Management Designer exam prep with other Community members:

Join the Certified Identity and Access Management Designer Discussion