← Back to exam page

Identity-and-Access-Management-Architect Salesforce Certified Identity and Access Management Architect (WI23)

Loading demo links...

Showing 1–3 of 15 questions

Question 1

Universal Containers (UC) uses Salesforce for its customer service agents. UC has a proprietary system for order tracking which supports Security Assertion Markup Language (SAML) based single sign-on. The VP of customer service wants to ensure only active Salesforce users should be able to access the order tracking system which is only visible within Salesforce.

What should be done to fulfill the requirement?

Choose 2 answers

Select all that apply, then click Submit answer.

  • Setup Salesforce as an identity provider (IdP) for order Tracking.

  • Set up the Corporate Identity store as an identity provider (IdP) for Order Tracking,

  • Customize Order Tracking to initiate a REST call to validate users in Salesforce after login.

  • Setup Order Tracking as a Canvas app in Salesforce to POST IdP initiated SAML assertion.
Question 2

Universal Container's (UC) is using Salesforce Experience Cloud site for its container wholesale business. The identity architect wants to an authentication provider for the new site.

Which two options should be utilized in creating an authentication provider?

Choose 2 answers

Select all that apply, then click Submit answer.

  • A custom registration handier can be set.

  • A custom error URL can be set.

  • The default login user can be set.

  • The default authentication provider certificate can be set.
Question 3

Universal Containers is creating a web application that will be secured by Salesforce Identity using the OAuth 2.0 Web Server Flow uses the OAuth 2.0 authorization code grant type).

Which three OAuth concepts apply to this flow?

Choose 3 answers

Select all that apply, then click Submit answer.

  • Verification URL

  • Client Secret

  • Access Token

  • Scopes