← Back to exam page

Identity-and-Access-Management-Architect Salesforce Certified Identity and Access Management Architect (WI23)

Loading demo links...

Showing 10–12 of 15 questions

Question 10

Northern Trail Outfitters (NTO) is launching a new sportswear brand on its existing consumer portal built on Salesforce Experience Cloud. As part of the launch, emails with promotional links will be sent to existing customers to log in and claim a discount. The marketing manager would like the portal dynamically branded so that users will be directed to the brand link they clicked on; otherwise, users will view a recognizable NTO-branded page.

The campaign is launching quickly, so there is no time to procure any additional licenses. However, the development team is available to apply any required changes to the portal.

Which approach should the identity architect recommend?

Select an option, then click Submit answer.

  • Create a full sandbox to replicate the portal site and update the branding accordingly.

  • Implement Experience ID in the code and extend the URLs and endpomts, as required.

  • Use Heroku to build the new brand site and embedded login to reuse identities.

  • Configure an additional community site on the same org that is dedicated for the new brand.
Question 11

An architect needs to set up a Facebook Authentication provider as login option for a salesforce customer Community. What portion of the authentication provider setup associates a Facebook user with a salesforce user?

Select an option, then click Submit answer.

  • Consumer key and consumer secret

  • Federation ID

  • User info endpoint URL

  • Apex registration handler
Question 12

An Identity and Access Management (IAM) architect is tasked with unifying multiple B2C Commerce sites and an Experience Cloud community with a single identity. The solution needs to support more than 1,000 logins per minute.

What should the IAM do to fulfill this requirement?

Select an option, then click Submit answer.

  • Configure both the community and the commerce sites as OAuth2 RPs (relying party) with an external identity provider.

  • Configure community as a Security Assertion Markup Language (SAML) identity provider and enable Just-in-Time Provisioning to B2C Commerce.

  • Create a default account for capturing all ecommerce contacts registered on the community because personAccount is not supported for this case.

  • Confirm performance considerations with Salesforce Customer Support due to high peaks.