Universal containers (UC) has decided to use salesforce as an identity provider for multiple
external applications. UC wants to use the salesforce app launcher to control the apps that are
available to individual users. Which three steps are required to make this happen?
A. Set up an Auth provider for each external application.
B. Create a connected App for each external application.
C. Set up salesforce as a SAML IDP with my domain.
D. Set up identity connect to synchronize user data.
E. Add each connected App to the app launcher with a start URL
Answer(s): B, C, E
Universal containers (UC) wants to implement a partner community. As part of their
implementation, UC would like to modify both the Forgot password and change password
experience with custom branding for their partner community users. Which 2 actions should an
architect recommend to UC? Choose 2 answers
A. Build a community builder page for the change password experience and Custom Visualforce
page for the Forgot password experience.
B. Build a custom visualforce page for both the change password and Forgot password
C. Build a custom visualforce page for the change password experience and a community
builder page for the Forgot password experience.
D. Build a community builder page for both the change password and Forgot password
Answer(s): B, C
Universal containers wants to implement single Sign-on for a salesforce org using an external
identity provider and corporate identity store. What type of Authentication flow is required to
support deep linking?
A. Web server Oauth SSO flow.
B. Identity-provider-initiated SSO
C. Service-provider-initiated SSO
D. Start URL on identity provider
The security team at Universal containers(UC) has identified exporting reports as a high-risk
action and would like to require users to be logged into salesforce with their active directory
(AD) credentials when doing so. For all other uses of Salesforce, Users should be allowed to
use AD credentials or salesforce credentials. What solution should be recommended to prevent
exporting reports except when logged in using AD credentials