Free Salesforce Identity and Access Management Architect Exam Dumps and Identity and Access Management Architect Exam Questions

Question No: 1

MultipleChoice

Refer to the exhibit.

An organization has a central cloud-based Identity and Access Management (IAM) Service for authentication and user management, which must be utilized by all applications as follows:

1 - Change of a user status in the central IAM Service triggers provisioning or deprovisioining in the integrated cloud applications.

2 - Security Assertion Markup Language single sign-on (SSO) is used to facilitate access for users authenticated at identity provider (Central IAM Service).

Which approach should an IAM architect implement on Salesforce Sales Cloud to meet the requirements?

Options

AA Configure Salesforce as a SAML Service Provider, and enable SCIM (System for Cross-Domain Identity Management) for provisioning and deprovisioning of users.

BConfigure Salesforce as a SAML service provider, and enable Just-in Time (JIT) provisioning and deprovisioning of users.

CConfigure central IAM Service as an authentication provider and extend registration handler to manage provisioning and deprovisioning of users.

DDeploy Identity Connect component and set up automated provisioning and deprovisioning of users, as well as SAML-based SSO.

Question No: 2

MultipleChoice

Refer to the exhibit.

A pharmaceutical company has an on-premise application (see illustration) that it wants to integrate with Salesforce.

The IT director wants to ensure that requests must include a certificate with a trusted certificate chain to access the company's on-premise application endpoint.

What should an Identity architect do to meet this requirement?

Options

AUse open SSL to generate a Self-signed Certificate and upload it to the on-premise app.

BConfigure the company firewall to allow traffic from Salesforce IP ranges.

CGenerate a certificate authority-signed certificate in Salesforce and uploading it to the on-premise application Truststore.

DUpload a third-party certificate from Salesforce into the on-premise server.

Question No: 3

MultipleChoice

Refer to the exhibit.

A multinational company is looking to rollout Salesforce globally. The company has a Microsoft Active Directory Federation Services (ADFS) implementation for the Americas, Europe and APAC. The company plans to have a single org and they would like to have all of its users access Salesforce using the ADFS . The company would like to limit its investments and prefer not to procure additional applications to satisfy the requirements.

What is recommended to ensure these requirements are met ?

Options

AUse connected apps for each ADFS implementation and implement Salesforce site to authenticate users across the ADFS system applicable to their geo.

BImplement Identity Connect to provide single sign-on to Salesforce and federated across multiple ADFS systems.

CAdd a central identity system that federates between the ADFS systems and integrate with Salesforce for single sign-on.

DConfigure Each ADFS system under single sign-on settings and allow users to choose the system to authenticate during sign on to Salesforce-