Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Salesforce ARC-101 Exam - Topic 8 Question 59 Discussion

Northern Trail Outfitters needs to secure an integration with an external Microsoft AzureAPI Gateway.What integration security mechanism should be employed?
A) Configure mutual server authentication with two-way SSL using CA issued certificates.
B) Configure a connected app with an authorization endpoint of the API gateway and configure OAuth settings.
C) Use an API only user profile and implement use an external identity provider with federated API access.
D) Implement Salesforce Shield with Encryption at Rest and generate a tenant secret.

Salesforce ARC-101 Exam - Topic 8 Question 59 Discussion

Actual exam question for Salesforce's ARC-101 exam
Question #: 59
Topic #: 8
[All ARC-101 Questions]

Northern Trail Outfitters needs to secure an integration with an external Microsoft Azure

API Gateway.

What integration security mechanism should be employed?

Show Suggested Answer Hide Answer
Suggested Answer: A

by Merrilee at Apr 05, 2025, 02:25 AM

Limited Time Offer

25%

Off

Get Premium ARC-101 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Helene
5 months ago
Totally agree with B, it's the industry standard now!
upvoted 0 times
...
Gladys
6 months ago
Wait, is D really necessary for just an API integration?
upvoted 0 times
...
Ellen
6 months ago
I think A is more secure with two-way SSL.
upvoted 0 times
...
Loreta
6 months ago
C sounds good, but how reliable is that external identity provider?
upvoted 0 times
...
Keneth
6 months ago
Option B is the way to go with OAuth!
upvoted 0 times
...
Tracey
6 months ago
I don't recall much about Salesforce Shield, so I'm leaning away from option D. It seems more focused on data protection rather than API integration security.
upvoted 0 times
...
Breana
7 months ago
I feel like option C could work too, especially if we're considering external identity providers. But I’m not confident about how federated access would fit in this scenario.
upvoted 0 times
...
Maile
7 months ago
I'm not entirely sure, but I remember something about two-way SSL from a practice question. Could that be option A? It might be more secure, right?
upvoted 0 times
...
Bok
7 months ago
I think option B sounds familiar since we discussed OAuth in our last study session. It seems like a solid choice for securing API integrations.
upvoted 0 times
...
Janella
7 months ago
Whoa, this is a tricky one. I'm going to need to review my notes on Azure API security before I can confidently answer this.
upvoted 0 times
...
Emerson
8 months ago
Ah, this is a good one. I remember learning about these types of Azure API security integrations in class. I think I've got a good handle on the right approach to use here.
upvoted 0 times
...
Ulysses
8 months ago
Okay, I've got a strategy here. I'll focus on the requirements - it's an external Azure API Gateway, so I need to consider authentication and authorization mechanisms that work well in that context.
upvoted 0 times
...
Rusty
8 months ago
Hmm, I'm a bit unsure about this one. I'll need to think through the different options carefully to make sure I select the right security approach.
upvoted 0 times
...
Thaddeus
8 months ago
This looks like a pretty straightforward security integration question. I think the key is to identify the right security mechanism for an Azure API Gateway.
upvoted 0 times
...
Garry
1 year ago
I heard Azure API Gateways come with their own built-in security features. Why not just let Microsoft handle all that for us? It'll be like letting the pros take care of the heavy lifting.
upvoted 0 times
Keneth
11 months ago
C) Use an API only user profile and implement use an external identity provider with federated API access.
upvoted 0 times
...
Edison
12 months ago
B) I think it's important for us to have control over our own security measures.
upvoted 0 times
...
Lynelle
1 year ago
A) Configure mutual server authentication with two-way SSL using CA issued certificates.
upvoted 0 times
...
...
Gail
1 year ago
Implementing Salesforce Shield and encryption at rest? That's overkill, my dude. This is an Azure API Gateway, not Fort Knox.
upvoted 0 times
Avery
11 months ago
C) Use an API only user profile and implement use an external identity provider with federated API access.
upvoted 0 times
...
Reita
12 months ago
Implementing Salesforce Shield and encryption at rest? That's overkill, my dude. This is an Azure API Gateway, not Fort Knox.
upvoted 0 times
...
Tiffiny
1 year ago
B) Configure a connected app with an authorization endpoint of the API gateway and configure OAuth settings.
upvoted 0 times
...
Tammara
1 year ago
A) Configure mutual server authentication with two-way SSL using CA issued certificates.
upvoted 0 times
...
...
Maddie
1 year ago
Hold up, what about using an external identity provider? That could be a really elegant solution, especially if we already have some kind of federated access set up.
upvoted 0 times
Moon
1 year ago
C) Use an API only user profile and implement use an external identity provider with federated API access.
upvoted 0 times
...
Myong
1 year ago
B) Configure a connected app with an authorization endpoint of the API gateway and configure OAuth settings.
upvoted 0 times
...
Hortencia
1 year ago
A) Configure mutual server authentication with two-way SSL using CA issued certificates.
upvoted 0 times
...
...
Louvenia
1 year ago
Hmm, I'm not sure about that. Shouldn't we be looking at mutual server authentication with SSL certificates? That's the classic security mechanism for this kind of integration.
upvoted 0 times
Cecilia
12 months ago
B) Agreed, we should prioritize security when setting up integrations with external services.
upvoted 0 times
...
Almeta
12 months ago
A) Definitely, it's a reliable mechanism to ensure secure communication between systems.
upvoted 0 times
...
Annmarie
1 year ago
B) I think that's a good idea. It provides a strong level of security for the integration.
upvoted 0 times
...
Abel
1 year ago
A) Configure mutual server authentication with two-way SSL using CA issued certificates.
upvoted 0 times
...
...
Lizette
1 year ago
Option B seems like the way to go here. Configuring a connected app with OAuth settings is a robust and secure way to integrate with the Azure API Gateway.
upvoted 0 times
...
Tijuana
1 year ago
I'm not sure about option A, I think option B could also be a good choice as it involves configuring OAuth settings for authorization.
upvoted 0 times
...
Alline
1 year ago
I agree with Della, option A provides mutual server authentication which adds an extra layer of security to the integration.
upvoted 0 times
...
Della
1 year ago
I think option A is the best choice because it ensures secure communication between Northern Trail Outfitters and the external Microsoft Azure API Gateway.
upvoted 0 times
...

Save Cancel