New Year Sale ! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Salesforce Exam Identity and Access Management Architect Topic 6 Question 33 Discussion

Actual exam question for Salesforce's Identity and Access Management Architect exam
Question #: 33
Topic #: 6
[All Identity and Access Management Architect Questions]

Northern Trail Outfitters mar ages functional group permissions in a custom security application supported by a relational database and a REST service layer. Group permissions are mapped as permission sets in Salesforce.

Which action should an identity architect use to ensure functional group permissions are reflected as permission set assignments?

Show Suggested Answer Hide Answer
Suggested Answer: B

Contribute your Thoughts:

Madonna
5 months ago
I see your point, but I still think option B is the most practical solution for this scenario.
upvoted 0 times
...
Leslee
5 months ago
I think using the Apex JIT handler to query SAML attributes directly would be more efficient and secure.
upvoted 0 times
...
Sharika
5 months ago
Can you explain why you think option C is the best choice?
upvoted 0 times
...
Leslee
5 months ago
I'm leaning towards option C) Use the Apex Just-in-Time (JIT) handler to query the SAML attributes and set permission sets.
upvoted 0 times
...
Madonna
5 months ago
I disagree, I believe the correct answer is B) Use a Login Flow with invocable Apex to callout to the security application and set permission sets.
upvoted 0 times
...
Sharika
6 months ago
I think the answer is A) Use a Login Flow to query SAML attributes and set permission sets.
upvoted 0 times
...
Tawny
6 months ago
Virgina: Well, using the Apex JIT handler to query SAML attributes and set permission sets directly seems like a more direct approach.
upvoted 0 times
...
Coral
6 months ago
Option C looks good to me. Using the JIT handler to handle the SAML attributes is a nice, elegant solution.
upvoted 0 times
Hubert
5 months ago
I agree, it seems like the most efficient way to ensure functional group permissions are reflected accurately.
upvoted 0 times
...
Rosendo
5 months ago
Option C looks good to me. Using the JIT handler to handle the SAML attributes is a nice, elegant solution.
upvoted 0 times
...
...
Franklyn
6 months ago
Haha, I bet the security app dev team is just sitting back and watching us all debate the best way to integrate with their system. As long as it works, right?
upvoted 0 times
Winfred
5 months ago
Haha, I bet the security app dev team is just sitting back and watching us all debate the best way to integrate with their system. As long as it works, right?
upvoted 0 times
...
Virgie
5 months ago
B) Use a Login Flow with invocable Apex to callout to the security application and set permission sets.
upvoted 0 times
...
Oliva
5 months ago
A) Use a Login Flow to query SAML attributes and set permission sets.
upvoted 0 times
...
...
Shenika
6 months ago
Shenika: Why do you think that?
upvoted 0 times
...
Virgina
6 months ago
Virgina: I disagree, I think option C is more appropriate.
upvoted 0 times
...
Jennie
6 months ago
I'm not a fan of the Login Flow solution in Option A. Feels too indirect, you know? Option D is cleaner with the JIT handler.
upvoted 0 times
Candida
6 months ago
Option A does seem a bit indirect compared to using the JIT handler in Option D.
upvoted 0 times
...
Teri
6 months ago
Yeah, using the JIT handler for setting permission sets makes more sense.
upvoted 0 times
...
Tamie
6 months ago
I agree, Option D with the JIT handler seems more direct and efficient.
upvoted 0 times
...
Amira
6 months ago
Yeah, I think using the JIT handler would be the best approach for reflecting functional group permissions.
upvoted 0 times
...
Hyun
6 months ago
I agree, Option D seems more direct and efficient.
upvoted 0 times
...
...
Shanda
6 months ago
Golda: Because using invocable Apex to callout to the security application seems like the most efficient way to set permission sets.
upvoted 0 times
...
Golda
7 months ago
Why do you say that?
upvoted 0 times
...
Tom
7 months ago
Option B seems like the way to go. Querying the security app and setting the permission sets directly is the most straightforward approach.
upvoted 0 times
Jesse
6 months ago
Exactly, it's all about optimizing the workflow and ensuring accuracy.
upvoted 0 times
...
Latricia
6 months ago
No need for manual intervention or complex setups.
upvoted 0 times
...
Rasheeda
6 months ago
That way, everything is automated and efficient.
upvoted 0 times
...
Shawn
6 months ago
It would definitely streamline the process of reflecting functional group permissions as permission set assignments.
upvoted 0 times
...
Sean
6 months ago
I agree, using a Login Flow with invocable Apex to callout to the security application makes sense.
upvoted 0 times
...
Shizue
6 months ago
Querying the security app and setting the permission sets directly is the most straightforward approach.
upvoted 0 times
...
Dana
7 months ago
Option B seems like the way to go.
upvoted 0 times
...
...
Oliva
7 months ago
I think option B is the best choice.
upvoted 0 times
...

Save Cancel