| Exam Code | Identity-and-Access-Management-Designer |
| Exam Name | Salesforce Certified Identity and Access Management Architect (WI23) |
| Questions | 247 Questions Answers With Explanation |
| Update Date | November 08,2024 |
| Price |
Was : |
Are you ready to take your career to the next level with Salesforce Certified Identity and Access Management Architect (WI23)? At Prep4Certs, we're dedicated to helping you achieve your goals by providing high-quality Identity-and-Access-Management-Designer Dumps and resources for a wide range of certification exams.
At Prep4Certs, we're committed to your success in the Salesforce Identity-and-Access-Management-Designer exam. Our comprehensive study materials and resources are designed to equip you with the knowledge and skills needed to ace the exam with confidence:
Start Your Certification Journey Today
Whether you're looking to advance your career, expand your skill set, or pursue new opportunities, Prep4Certs is here to support you on your certification journey. Explore our comprehensive study materials, take your exam preparation to the next level, and unlock new possibilities for professional growth and success.
Ready to achieve your certification goals? Begin your journey with Prep4Certs today!
The security team at Universal Containers (UC) has identified exporting reports as a highrisk action and would like to require users to be logged into Salesforce with their Active Directory (AD) credentials when doing so. For all other users of Salesforce, users should be allowed to use AD Credentials or Salesforce credentials. What solution should be recommended to prevent exporting reports except when logged in using AD credentials while maintaining the ability to view reports when logged in with Salesforce credentials?
A. Use SAML Federated Authentication and block access to reports when accessed through a Standard Assurance session.
B.
Use SAML Federated Authentication and Custom SAML JIT Provisioning to
dynamically and or remove a permission set that grants the Export
Reports Permission.
C. Use SAML federated Authentication, treat SAML
Sessions as High Assurance, and raise the session level required for
exporting reports.
D. Use SAML federated Authentication with a Login
Flow to dynamically add or remove a Permission Set that grants the
Export Reports Permission.
Universal Containers (UC) wants its closed Won opportunities to be synced to a Data Warehouse in near real time. UC has implemented Outbound Message to enable near realtime data sync. UC wants to ensure that communication between Salesforce and Target System is Secure. What Certificate is sent along with the Outbound Message?
A. The CA-Signed Certificate from the Certificate and Key Management menu.
B. The default Client Certificate from the Develop--> API Menu.
C. The default Client Certificate or a Certificate from Certificate and Key Management menu.
D. The Self-Signed Certificates from the Certificate & Key Management menu.
A company wants to provide its employees with a custom mobile app that accesses Salesforce. Users are required to download the internal native IOS mobile app from corporate intranet on their mobile device. The app allows flexibility to access other Non Salesforce internal applications once users authenticate with Salesforce. The apps selfauthorize, and users are permitted to use the apps once they have logged into Salesforce. How should an identity architect meet the above requirements with the privately distributed mobile app?
A. Use connected app with OAuth and Security Assertion Markup Language (SAML) to access other Non Salesforce internal apps.
B. Configure Mobile App settings in connected app and Salesforce as identity provider for non-Salesforce internal apps.
C.
Use Salesforce as an identity provider (IdP) to access the mobile app
and use the external IdP for other non-Salesforce internal apps.
D.
Create a new hybrid mobile app and use the connected app with OAuth to
authenticate users for Salesforce and non-Salesforce internal apps.
The CMO of an advertising company has invited an Identity and Access Management(IAM) specialist to discuss Salesforce out-of-box capabilities for configuring the company*slogin and registration experience on Salesforce Experience Cloud.The CMO is looking to brand the login page with the company's logo, background color,login button color, and dynamic right-frame from an external URL.Which two solutions should the IAM specialist recommend? Choose 2 answers
A. Use Experience Builder to build branded Reset and Forgot Password pages.
B. Build custom pages for branding requirements in Experience Cloud.
C. Build custom site pages for reset and forgot password features.
D. Login & Registration pages can be branded in the Community Administration settings.
A web service is developed that allows secure access to customer order status on theSalesforce Platform, The service connects to Salesforce through a connected app with theweb server flow. The following are the required actions for the authorization flow:1. User Authenticates and Authorizes Access2. Request an Access Token3. Salesforce Grants an Access Token4. Request an Authorization Code5. Salesforce Grants Authorization CodeWhat is the correct sequence for the authorization flow?
A. 1, 4, 5, 2, 3
B. 4, 1, 5, 2, 3
C. 2, 1, 3, 4, 5
D. 4,5,2, 3, 1
Universal Containers (UC) is both a Salesforce and Google Apps customer. The UC ITteam would like to manage the users for both systems in a single place to reduceadministrative burden. Which two optimal ways can the IT team provision users and allowSingle Sign-on between Salesforce and Google Apps ? Choose 2 answers
A. Build a custom app running on Heroku as the Identity Provider that can sync user information between Salesforce and Google Apps.
B. Use a third-party product as the Identity Provider for both Salesforce and Google Apps and manage the provisioning from there.
C. Use Identity Connect as the Identity Provider for both Salesforce and Google Apps and manage the provisioning from there.
D. Use Salesforce as the Identity Provider and Google Apps as a Service Provider and configure User Provisioning for Connected Apps.
A technology enterprise is planning to implement single sign-on login for users. Whenusers log in to the Salesforce User object custom field, data should be populated for newand existing users. Which two steps should an identity architect recommend? Choose 2 answers
A. Implement Auth.SamlJitHandler Interface.
B. Create and update methods.
C. Implement RegistrationHandler Interface.
D. Implement SesslonManagement Class.
Northern Trail Outfitters (NTO) is launching a new sportswear brand on its existing consumer portal built on Salesforce Experience Cloud. As part of the launch, emails with promotional links will be sent to existing customers to log in and claim a discount. The marketing manager would like the portal dynamically branded so that users will be directed to the brand link they clicked on; otherwise, users will view a recognizable NTO-branded page. The campaign is launching quickly, so there is no time to procure any additional licenses. However, the development team is available to apply any required changes to the portal. Which approach should the identity architect recommend?
A. Create a full sandbox to replicate the portal site and update the branding accordingly.
B. Implement Experience ID in the code and extend the URLs and endpomts, as required.
C. Use Heroku to build the new brand site and embedded login to reuse identities.
D. Configure an additional community site on the same org that is dedicated for the new brand.
An Architect needs to advise the team that manages the Identity Provider how to differentiate Salesforce from other Service Providers. What SAML SSO setting in Salesforce provides this capability?
A. Identity Provider Login URL.
B. Issuer.
C. Entity Id
D. SAML Identity Location.
Universal Containers (UC) wants to provide single sign-on (SSO) for a business-toconsumer (B2C) application using Salesforce Identity. Which Salesforce license should UC utilize to implement this use case?
A. Identity Only
B. Salesforce Platform
C. External Identity
D. Partner Community
