CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Salesforce
  5. IDENTITY-AND-ACCESS-MANAGEMENT-DESIGNER

Free IDENTITY-AND-ACCESS-MANAGEMENT-DESIGNER Exam Braindumps (page: 17)

Page 17 of 59
PDF with 230 Questions

Universal Containers (UC) uses Salesforce to allow customers to keep track of the orderstatus. The customers can log in to Salesforce using external authentication providers, such as Facebook and Google. UC is also leveraging the App Launcher to let customers access an of platform application for generating shipping labels. The label generator application uses OAuth to provide users access.
What license type should an Architect recommend for the customers?

  1. Customer Community license
  2. Identity license
  3. Customer Community Plus license
  4. External Identity license

Answer(s): B



Universal containers (UC) is setting up Delegated Authentication to allow employees to log inusing their corporate credentials. UC's security team is concerned about the risk of exposing the corporate login service on the Internet and has asked that a reliable trust mechanism be put in place between the login service and salesforce.
What mechanismshould an architect put in place to enable a trusted connection between the login services and salesforce?

  1. Include client ID and client secret in the login header callout.
  2. Set up a proxy server for the login service in the DMZ.
  3. Require the use ofSalesforce security Tokens on password.
  4. Enforce mutual Authentication between systems using SSL.

Answer(s): C



Universal Containers isusing OpenID Connect to enable a connection from their new mobile app to its production Salesforce org.

What should be done to enable the retrieval of the access token status for the OpenID Connect connection?

  1. Query using OpenID Connect discovery endpoint.
  2. A Leverage OpenID Connect Token Introspection.
  3. Create a custom OAuth scope.
  4. Enable cross-origin resource sharing (CORS) for the /services/oauth2/token endpoint.

Answer(s): B



Universal Containers (UC) has a custom, internal-only, mobile billing application forusers who are commonly out of the office. The app is configured as a connected App in Salesforce. Due to the nature of this app, UC would like to take the appropriate measures to properly secure access to the app.
Which two are recommendations to make theUC? Choose 2 answers

  1. Disallow the use of Single Sign-on for any users of the mobile app.
  2. Require High Assurance sessions in order to use the Connected App.
  3. Set Login IP Ranges to the internal network for all of the app users Profiles.
  4. Use Google Authenticator as an additional part of the login process

Answer(s): B,D



Page 17 of 59



Post your Comments and Discuss Salesforce IDENTITY-AND-ACCESS-MANAGEMENT-DESIGNER exam with other Community members:

Hetain commented on September 07, 2022
Just domenated the exam today. This is f***king awesome. I cannot thank you guys enough.
UNITED STATES
upvote

Bryce commented on September 05, 2022
This is an absoulte must-have exam question bank. The questions are from the real exam.
UNITED STATES
upvote

Lisa commented on August 21, 2022
Good questions for practice.
UNITED STATES
upvote

Johnny commented on July 06, 2021
Thank you for the great service and this amazing braindumps.
UNITED KINGDOM
upvote

Bernard commented on April 13, 2021
Software is good but needs some UI/UX improvement. For example under Settings where you select between Simulator or Study mode is hard to notice as they look like tabs. A side for that content looks well formatted and valid.
UNITED STATES
upvote