Identity and Access Management Designer V1

Universal Containers (UC) rolling out a new Customer Identity and AccessManagement Solution will be built on top of their existing Salesforce instance. Several service providers have been setup and integrated with Salesforce using OpenlD Connect to allow for a seamless single sign-on experience. UC has a requirement to limit user...

Sales users at Universal containers use salesforce for Opportunity management. Marketing uses a third-party application called Nest for Lead nurturing that is accessed using username/password. The VP of sales wants to open up access to nest for all sales uses to provide them access to lead history and would like...

Universal containers wants to build a custom mobile app connecting to salesforce using Oauth, and would like to restrict the types of resources mobile users can access . What Oauth feature of Salesforceshould be used to achieve the goal?A . Access Tokens B. Mobile pins C. Refresh Tokens D. ScopesView...

Universal Containers (UC) has implemented SAML-based Single Sign-On to provide seamless access to its Salesforce Orgs, financial system, and CPQ system. Below is the SSO implementation landscape. What role combination is represented by the systems in this scenario''A . Financial System and CPQ System are the only Service Providers. B....

Universal Containers (UC) employees have Salesforce access from restricted IP ranges only, to protect against unauthorised access. UC wants to roll out the Salesforce1 mobile app and make it accessible from any location . Which two options should an Architect recommend? Choose 2 answersA . Relax the IP restriction with...

What item should an Architect consider when designing a Delegated Authentication implementation?A . The Web service should be secured with TLS using Salesforce trusted certificates. B. The Web service should be able to accept one to four input method parameters. C. The web service should use the Salesforce Federation ID...

Universal containers uses an Employee portal for their employees to collaborate. employees access the portal from their company's internal website viaSSO. It is set up to work with Active Directory . What is the role of Active Directory in this scenario?A . Identity store B. Authentication store C. Identity provider...

A service provider (SP) supports both Security Assertion Markup Language (SAML) and OpenID Connect (OIDC). When integrating this SP with Salesforce, which use case is the determining factor when choosing OIDC or SAML?A . OIDC is more secure than SAML and therefore is the obvious choice. B. The SP needs...

Northern Trail Outfitters (NTO) is launching anew sportswear brand on its existing consumer portal built on Salesforce Experience Cloud. As part of the launch, emails with promotional links will be sent to existing customers to log in and claim a discount. The marketing manager would like the portal dynamically branded...

An identity architect is implementing a mobile-first Consumer Identity Access Management (CIAM) for external users. User authentication is the only requirement. The users email or mobile phone number should be supported as a username. Which two licenses are needed to meet this requirement? Choose 2 answersA . External Identity Licenses...