Salesforce Exam Integration Architect Topic 9 Question 39 Discussion

Actual exam question for Salesforce's Integration Architect exam

Question #: 39
Topic #: 9

Universal Containers (UC) currently owns a middleware tool and they have developed an API-led integration architecture with three API tiers. The first tier interfaces directly with the systems of engagement, the second tier implements business logic and aggregates data, while the third tier interfaces directly with systems of record. Some of the systems of engagement will be a mobile application, a web application, and Salesforce.

UC has a business requirement to return data to the systems of engagement in different formats while also enforcing different security protocols.

What should an Integration Architect recommend to meet these requirements?

AEnforce separate security protocols and return formats at the first tier of the API-led
architecture.

BImplement an API gateway that all systems of engagement must interface with first.

CEnforce separate security protocols and return formats at the second tier of the API-led architecture.

DLeverage an Identity Provider solution that communicates with the API tiers via SAML

Show Suggested Answer

Suggested Answer: B

by Alishia at Jun 21, 2024, 05:29 AM

Limited Time Offer

25%

Off

Get Premium Integration Architect Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Levi

4 months ago

I think leveraging an Identity Provider solution would be the best option for communication.

upvoted 0 times

...

Georgiana

4 months ago

I agree with Roosevelt, enforcing security protocols at the first tier makes sense.

upvoted 0 times

...

Rosalind

4 months ago

Option D sounds like someone is trying to sneak in some SAML knowledge. Nice try, but B is the winner here.

upvoted 0 times

...

Asuncion

4 months ago

I disagree, I believe implementing an API gateway would be more efficient.

upvoted 0 times

...

Nancey

4 months ago

Haha, I'm just glad they didn't ask about GraphQL. That would have really thrown a wrench in the works!

upvoted 0 times

Stephaine

3 months ago

Yeah, that way each system of engagement can have its own requirements met.

upvoted 0 times

...

Merissa

3 months ago

I think enforcing separate security protocols and return formats at the first tier makes sense.

upvoted 0 times

...

Roosevelt

4 months ago

I think we should enforce separate security protocols at the first tier.

upvoted 0 times

...

Boris

4 months ago

C could also work, but I think B is more elegant. Who needs extra complexity at the business logic tier?

upvoted 0 times

Narcisa

3 months ago

Enforcing security protocols at the first tier seems like a good approach.

upvoted 0 times

...

Leonard

3 months ago

I agree, keeping it simple at the business logic tier makes sense.

upvoted 0 times

...

Elise

4 months ago

C could also work, but I see your point about extra complexity.

upvoted 0 times

...

Graciela

4 months ago

I think B is more elegant.

upvoted 0 times

...

Kris

4 months ago

I agree, B is the way to go. Centralizing the security and formatting at the gateway level is the cleanest approach.

upvoted 0 times

...

Stephen

4 months ago

Option B makes the most sense. An API gateway is the perfect way to handle different security protocols and return formats across multiple systems of engagement.

upvoted 0 times

Eleonore

4 months ago

I agree, an API gateway would help with handling different security protocols and return formats.

upvoted 0 times

...

Sherron

4 months ago

I think option B is the best choice.

upvoted 0 times

...