← Back to exam page

Identity-and-Access-Management-Architect Salesforce Certified Identity and Access Management Architect (WI23)

Loading demo links...

Showing 13–15 of 15 questions

Question 13

A division of a Northern Trail Outfitters (NTO) purchased Salesforce. NTO uses a third party identity provider (IdP) to validate user credentials against Its corporate Lightweight Directory Access Protocol (LDAP) directory. NTO wants to help employees remember as passwords as possible.

What should an identity architect recommend?

Select an option, then click Submit answer.

  • Setup Salesforce as a Service Provider to the existing IdP.

  • Setup Salesforce as an IdP to authenticate against the LDAP directory.

  • Use Salesforce connect to synchronize LDAP passwords to Salesforce.

  • Setup Salesforce as an Authentication Provider to the existing IdP.
Question 14

Northern Trail Outfitters manages application functional permissions centrally as Active Directory groups. The CRM_Superllser and CRM_Reportmg_SuperUser groups should respectively give the user the SuperUser and Reportmg_SuperUser permission set in Salesforce. Salesforce is the service provider to a Security Assertion Markup Language (SAML) identity provider.

Mow should an identity architect ensure the Active Directory groups are reflected correctly when a user accesses Salesforce?

Select an option, then click Submit answer.

  • Use the Apex Just-in-Time handler to query standard SAML attributes and set permission sets.

  • Use the Apex Just-in-Time handler to query custom SAML attributes and set permission sets.

  • Use a login flow to query custom SAML attributes and set permission sets.

  • Use a login flow to query standard SAML attributes and set permission sets.
Question 15

A global fitness equipment manufacturer uses Salesforce to manage its sales cycle. The manufacturer has a custom order fulfillment app that needs to request order data from Salesforce. The order fulfillment app needs to integrate with the Salesforce API using OAuth 2.0 protocol.

What should an identity architect use to fulfill this requirement?

Select an option, then click Submit answer.

  • Canvas App Integration

  • OAuth Tokens

  • Authentication Providers

  • Connected App and OAuth scopes