Salesforce Exam Identity-and-Access-Management-designer Topic 3 Question 19 Discussion

Actual exam question for Salesforce's Identity and Access Management Designer exam

Question #: 19
Topic #: 3

[All Identity and Access Management Designer Questions]

Universal containers (UC) has a classified information system that it's call centre team uses only when they are working on a case with a record type of "classified". They are only allowed to access the system when they own an open "classified" case, and their access to the system is removed at all other times. They would like to implement SAML SSO with salesforce as the IDP, and automatically allow or deny the staff's access to the classified information system based on whether they currently own an open "classified" case record when they try to access the system using SSO. What is the recommended solution for automatically allowing or denying access to the classified information system based on the open "classified" case record criteria?

AUse a custom connected App handler using apex to dynamically allow access to the system based on whether the staff owns any open 'classified' cases.

BUse apex trigger on case to dynamically assign permission sets that grant access when a user is assigned with an open 'classified' case, and remove it when the case is closed.

CUse custom SAML jit provisioning to dynamically query the user's open 'classified' cases when attempting to access the classified information system

DUse salesforce reports to identify users that currently owns open 'classified' cases and should be granted access to the classified information system.

Show Suggested Answer

Suggested Answer: A

by Cecily at May 06, 2022, 10:39 AM

Limited Time Offer

25%

Off

Get Premium Identity-and-Access-Management-designer Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!