Free Salesforce Identity-and-Access-Management-designer Exam Dumps and Identity-and-Access-Management-designer Exam Questions

Question No: 1

MultipleChoice

Universal Containers (UC) has decided to build a new, highly sensitive application on the Force.com platform. The security team at UC has decided that they want users to provide a fingerprint in addition to username/password to authenticate to this application. How can an Architect support fingerprints as a form of identification for Salesforce authentication?

Options

AUse Salesforce Two-factor authentication with callouts to a third-party fingerprint scanning application.

BUse an AppExchange product that does fingerprint scanning with native Salesforce Identity Confirmation.

CUse delegated Authentication with callouts to a third-party fingerprint scanning application.

DUse custom login flows with callouts to a third-party fingerprint scanning application.

Question No: 2

MultipleChoice

Containers (UC) has multiple Salesforce Orgs and would like to use a single Identity Provider to access all of their orgs. How should UC's Architect enable this behaviour?

Options

AEnsure that users have the same Alias value in their user records in all of UC's Salesforce orgs.

BEnsure the same username is allowed in multiple orgs by contacting Salesforce Support.

CEnsure that users have the same Federation ID value in their User records in all of UC's Salesforce orgs

DEnsure that users have the same Email Value in their user records in all of UC's Salesforce orgs.

Question No: 3

MultipleChoice

Universal Containers (UC) is building an integration between Salesforce and a legacy web application using the Canvas framework. The security team for UC has determined that a signed request from Salesforce is not an adequate authentication solution for the third-party app. Which two options should the Architect consider for authenticating the third-party app using the Canvas framework? Choose 2 answers

Options

AUtilize the SAML Single Sign-on flow to allow the third-party to authenticate itself against UC's IdP.

BUtilize Authorization Providers to allow the third-party application to authenticate itself against Salesforce as the IdP.

CUtilize the Canvas OAuth flow to allow the third-party application to authenticate itself against Salesfore as the IdP

DCreate a registration handler Apex class to allow the third-party application to authenticate itself against Salesforce as the IdP.

Question No: 4

MultipleChoice

Universal containers (UC) is planning to deploy a custom mobile app that will allow users to get e-signatures from its customers on their mobile devices. The mobile app connects to salesforce to upload the e-signatures as a file attachment and uses Oauth protocol for both Authentication and authorization. What is the most recommended and secure Oauth scope setting that an architect should recommend?

Options

AId

BWeb

CCustom_permissions

DAPI