CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Salesforce
  5. IDENTITY-AND-ACCESS-MANAGEMENT-DESIGNER

Free IDENTITY-AND-ACCESS-MANAGEMENT-DESIGNER Exam Braindumps (page: 19)

Page 19 of 59
PDF with 230 Questions

Universal Containers (UC) has five Salesforce orgs (UC1, UC2, UC3, UC4, UC5). of Every user that is in UC2, UC3, UC4, and UC5 is also in UC1, however not all users 65* have access to everyorg. Universal Containers would like to simplify the authentication process such that all Salesforce users need to remember one set of credentials. UC would like to achieve this with the least impact to cost and maintenance.
What approach should an Architect recommend to UC?

  1. Purchase a third-party Identity Provider for all five Salesforce orgs to use and set up JIT user provisioning on all other orgs.
  2. Purchase a third-party Identity Provider for all five Salesforce orgs to use, but don't set up JIT user provisioning for other orgs.
  3. Configure UC1 as the Identity Provider to the other four Salesforce orgs and set up JIT user provisioning on all other orgs.
  4. Configure UC1 as the Identity Provider to the other four Salesforce orgs, but don't set up JIT user provisioning for other orgs.

Answer(s): B



Universal containers (UC) wants to implement Delegated Authentication for a certain subset of Salesforce users.
Which three items should UC take into consideration while building the Web service to handle the Delegated Authentication request? Choose 3 answers

  1. The web service needs to include Source IP as a method parameter.
  2. UC should whitelist all salesforce ip ranges on their corporate firewall.
  3. The web service can be written using either the soap or rest protocol.
  4. Delegated Authentication is enabled for the system administrator profile.
  5. The return type of the Web service method should be a Boolean value

Answer(s): A,B,E



Universal containers(UC) has implemented SAML-BASED single Sign-on for their salesforce application and is planning to provide access to salesforce on mobile devices using the salesforce1 mobile app. UC wants to ensure that single Sign-on is used for accessing the salesforce1 mobile app.
Which two recommendations should the architect make? Choose 2 answers

  1. Use the existing SAML SSO flow along with user agent flow.
  2. Configure the embedded Web browser to use my domain URL.
  3. Use the existing SAML SSO flow along with Web server flow
  4. Configure the salesforce1 app to use the my domain URL

Answer(s): A,D



Universal containers wants salesforceinbound Oauth-enabled integration clients to use SAML-BASED single Sign-on for authentication.
What Oauth flow would be recommended in this scenario?

  1. User-Agent Oauth flow
  2. SAML assertion Oauth flow
  3. User-Token Oauth flow
  4. Web server Oauth flow

Answer(s): B



Page 19 of 59



Post your Comments and Discuss Salesforce IDENTITY-AND-ACCESS-MANAGEMENT-DESIGNER exam with other Community members:

Hetain commented on September 07, 2022
Just domenated the exam today. This is f***king awesome. I cannot thank you guys enough.
UNITED STATES
upvote

Bryce commented on September 05, 2022
This is an absoulte must-have exam question bank. The questions are from the real exam.
UNITED STATES
upvote

Lisa commented on August 21, 2022
Good questions for practice.
UNITED STATES
upvote

Johnny commented on July 06, 2021
Thank you for the great service and this amazing braindumps.
UNITED KINGDOM
upvote

Bernard commented on April 13, 2021
Software is good but needs some UI/UX improvement. For example under Settings where you select between Simulator or Study mode is hard to notice as they look like tabs. A side for that content looks well formatted and valid.
UNITED STATES
upvote