Salesforce FSL-201 Exam - Topic 3 Question 23 Discussion

Actual exam question for Salesforce's FSL-201 exam

Question #: 23
Topic #: 3

Universal Containers (UC) currently owns a middleware tool and they have developed an API-led integration architecture with three API tiers. The first tier interfaces directly with the systems of engagement, the second tier implements business logic and aggregates data, while the third tier interfaces directly with systems of record. Some of the systems of engagement will be a mobile application, a web application, and Salesforce.

UC has a business requirement to return data to the systems of engagement in different formats while also enforcing different security protocols.

What should an Integration Architect recommend to meet these requirements?

AEnforce separate security protocols and return formats at the first tier of the API-led
architecture.

BImplement an API gateway that all systems of engagement must interface with first.

CEnforce separate security protocols and return formats at the second tier of the API-led architecture.

DLeverage an Identity Provider solution that communicates with the API tiers via SAML

Show Suggested Answer

Suggested Answer: B

by Nelida at Oct 15, 2022, 10:28 PM

Limited Time Offer

25%

Off

Get Premium FSL-201 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Ronald

4 months ago

I feel like enforcing at the second tier (option C) could complicate things.

upvoted 0 times

...

Elenor

4 months ago

Option D is interesting too, SAML could add a solid layer of security.

upvoted 0 times

...

Refugia

4 months ago

Wait, can an API gateway really manage all that? Seems like a lot.

upvoted 0 times

...

Kasandra

4 months ago

Agree, an API gateway can handle all the formats and protocols.

upvoted 0 times

...

Luisa

4 months ago

I think option B makes the most sense for security.

upvoted 0 times

...

Audry

5 months ago

Leveraging an Identity Provider sounds familiar, especially with SAML, but I’m not sure if it fits this specific scenario with multiple formats.

upvoted 0 times

...

Roslyn

5 months ago

I feel like we practiced a similar question about API tiers and security, and I lean towards enforcing protocols at the second tier, but I’m not completely confident.

upvoted 0 times

...

Bettyann

5 months ago

I think implementing an API gateway could be a good approach since it centralizes security and format handling, but I can't recall if that was the best practice we studied.

upvoted 0 times

...

Amira

5 months ago

I remember we discussed the importance of where to enforce security protocols in API architectures, but I'm not sure if it should be at the first or second tier.

upvoted 0 times

...

Amber

5 months ago

Hmm, I'm not entirely sure about this one. I'll have to think it through carefully and eliminate the options that don't seem to fit the description.

upvoted 0 times

...

Sharee

5 months ago

Hmm, this seems like a tricky one. I'll need to think carefully about the capacity constraints and how to balance the production plan.

upvoted 0 times

...

Grover

5 months ago

I think password expiration periods were emphasized in a similar practice question, so that might be relevant here.

upvoted 0 times

...

Leatha

5 months ago

This question seems straightforward, I think I can handle it.

upvoted 0 times

...

Sanjuana

5 months ago

I've got this! The Cisco Transport Controller manages the NCS 4000, ONS 15454 MSTP, and NCS 2000 platforms. I'm confident those are the correct three choices.

upvoted 0 times

...