Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Salesforce Exam Security and Privacy Accredited Professional Topic 2 Question 45 Discussion

Actual exam question for Salesforce's Security and Privacy Accredited Professional exam
Question #: 45
Topic #: 2
[All Security and Privacy Accredited Professional Questions]

A customer prefers to generate an encryption key for Salesforce to use. They prefer to generate it manually, once a year.

What key management capability should the admin advise them to use?

Show Suggested Answer Hide Answer
Suggested Answer: A

by Naomi at Dec 04, 2024, 02:01 PM

Limited Time Offer

25%

Off

Get Premium Security and Privacy Accredited Professional Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Isabella
2 months ago
C) Bring your own key, plus opt-out of key derivation is the way to go. I like to keep my encryption keys on a sticky note under my keyboard, just for added security.
upvoted 0 times
Galen
29 days ago
User 3: I think it's better to use Bring your own key and opt-out of key derivation for better security.
upvoted 0 times
...
Burma
1 months ago
User 2: Burma is right, that doesn't sound very secure.
upvoted 0 times
...
Emelda
2 months ago
User 1: Are you sure keeping your encryption key on a sticky note is secure?
upvoted 0 times
...
...
Cherelle
2 months ago
I would suggest option B) Implement a custom Apex key generation class. This way, the customer can have a custom solution that fits their specific needs.
upvoted 0 times
...
Jaleesa
2 months ago
I agree with Natalya. Bringing your own key and opting out of key derivation gives the customer more control over their encryption key.
upvoted 0 times
...
Natalya
2 months ago
I think the admin should advise them to use option C) Bring your own key, plus opt-out of key derivation.
upvoted 0 times
...
Arlyne
2 months ago
B) Implement a custom Apex key generation class? Sounds like a lot of coding, but at least I can make it dance the macarena if I want to.
upvoted 0 times
...
Angella
2 months ago
A) Export the tenant secret? Really? That's just asking for trouble. I'll stick with a custom Apex class, thank you very much.
upvoted 0 times
Gladys
2 months ago
User 2: I agree, I'm going with a custom Apex class.
upvoted 0 times
...
Miriam
2 months ago
User 1: Export the tenant secret? That sounds risky.
upvoted 0 times
...
...
Tandra
3 months ago
D) Upload your own tenant secret is the obvious choice. Why would I want to generate a new key every year? That's way too much work!
upvoted 0 times
...
Farrah
3 months ago
C) Bring your own key, plus opt-out of key derivation seems like the way to go. I like having control over my encryption keys.
upvoted 0 times
Moon
2 months ago
Rutha: Definitely, it's important to have that level of control.
upvoted 0 times
...
Felicia
2 months ago
User 3: I prefer that too. It's more secure.
upvoted 0 times
...
Rutha
2 months ago
User 2: Yeah, I agree. It's good to have control over your encryption keys.
upvoted 0 times
...
Charisse
2 months ago
User 1: I think C) Bring your own key, plus opt-out of key derivation is the best option.
upvoted 0 times
...
...

Save Cancel