New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Salesforce Certified Platform Identity and Access Management Architect (Plat-Arch-203) Exam - Topic 4 Question 16 Discussion

Actual exam question for Salesforce's Salesforce Certified Platform Identity and Access Management Architect (Plat-Arch-203) exam
Question #: 16
Topic #: 4
[All Salesforce Certified Platform Identity and Access Management Architect (Plat-Arch-203) Questions]

Universal Containers (UC) is building an integration between Salesforce and a legacy web applications using the canvas framework. The security for UC has determined that a signed request from Salesforce is not an adequate authentication solution for the Third-Party app. Which two options should the Architect consider for authenticating the third-party app using the canvas framework? Choose 2 Answers

Show Suggested Answer Hide Answer
Suggested Answer: D

by Candida at Feb 08, 2023, 12:09 PM

Limited Time Offer

25%

Off

Get Premium Salesforce Certified Platform Identity and Access Management Architect (Plat-Arch-203) Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Nickolas
4 months ago
Why not just stick with the signed request? Feels simpler!
upvoted 0 times
...
Hana
4 months ago
B is also a good pick, but I prefer A for security.
upvoted 0 times
...
Ryan
4 months ago
Wait, can OAuth really handle this? Seems risky.
upvoted 0 times
...
Brittni
4 months ago
Totally agree, SAML is a strong choice!
upvoted 0 times
...
Winifred
4 months ago
A and C seem like solid options for authentication.
upvoted 0 times
...
Barney
5 months ago
I vaguely recall something about using Apex classes for registration handlers, but I'm not confident if that's the right approach for this integration.
upvoted 0 times
...
Clay
5 months ago
I feel like the Authorization Providers could be relevant here, especially since they let external apps authenticate against Salesforce.
upvoted 0 times
...
Shonda
5 months ago
I think the Canvas OAuth flow might be a good option since it allows for secure authentication, but I need to double-check how it works with third-party apps.
upvoted 0 times
...
Jerilyn
5 months ago
I remember studying about SAML and how it can be used for single sign-on, but I'm not entirely sure if it's the best fit for this scenario.
upvoted 0 times
...
Truman
5 months ago
Good point. I think I'll go with a combination of options A and C to cover all the bases.
upvoted 0 times
...
Francisca
5 months ago
I'm not so sure, I remember something about redundancy, but I can't recall if that meant two links or just one.
upvoted 0 times
...
Veda
5 months ago
I think I remember that dbowner might be too much for regular access. Maybe datareader and datawriter are better?
upvoted 0 times
...
Paris
5 months ago
Okay, I think I've got it. Control information directly controls an elementary process, while influence information just affects it. I'll go with option C.
upvoted 0 times
...
Leonor
5 months ago
Hmm, I'm not totally sure about the service-orientation principles and how they relate to the service contract. I'll have to think this through carefully.
upvoted 0 times
...
Jin
10 months ago
I hear the security team is also considering a good old-fashioned handshake as an authentication method. You know, for that personal touch.
upvoted 0 times
Niesha
9 months ago
C) Utilize Canvas OAuth flow to allow the third-party application to authenticate itself against Salesforce as the Idp.
upvoted 0 times
...
Scarlet
9 months ago
That handshake idea sounds interesting, but I think we should stick to more secure options.
upvoted 0 times
...
Chuck
9 months ago
B) Utilize Authorization Providers to allow the third-party application to authenticate itself against Salesforce as the Idp.
upvoted 0 times
...
Gilma
10 months ago
A) Utilize the SAML Single Sign-on flow to allow the third-party to authenticate itself against UC's IdP.
upvoted 0 times
...
...
Lezlie
10 months ago
Maybe we should just tell the third-party app to use the 'password123' login credentials. That's secure, right?
upvoted 0 times
Major
8 months ago
Creating a registration handler Apex class could also be a good solution for authentication.
upvoted 0 times
...
Sharen
8 months ago
Another option could be utilizing Authorization Providers for authentication.
upvoted 0 times
...
Venita
8 months ago
We should consider utilizing the SAML Single Sign-on flow for authentication.
upvoted 0 times
...
Becky
8 months ago
No, using 'password123' as login credentials is not secure.
upvoted 0 times
...
Tawny
9 months ago
B) Utilize Authorization Providers to allow the third-party appliction to authenticate itself against Salesforce as the Idp.
upvoted 0 times
...
Tresa
9 months ago
A) Utilize the SAML Single Sign-on flow to allow the third-party to authenticate itself against UC's IdP.
upvoted 0 times
...
...
Fabiola
10 months ago
Wait, so we can't just use a signed request from Salesforce? That's like the easiest option! What's the point of having all these fancy authentication methods if a simple signed request won't work?
upvoted 0 times
...
Pauline
10 months ago
Creating a registration handler Apex class? Sounds like a lot of custom code just to authenticate the app. I'd rather go with a more standard solution like SAML or OAuth.
upvoted 0 times
Ellen
10 months ago
B) Utilize Authorization Providers to allow the third-party appliction to authenticate itself against Salesforce as the Idp.
upvoted 0 times
...
Delfina
10 months ago
A) Utilize the SAML Single Sign-on flow to allow the third-party to authenticate itself against UC's IdP.
upvoted 0 times
...
...
Catalina
10 months ago
I'm not sure about option C and D. They might not provide the level of security needed for the integration.
upvoted 0 times
...
Janessa
10 months ago
I agree with Providencia. Using SAML Single Sign-on and Authorization Providers seems like a secure way to authenticate.
upvoted 0 times
...
Cyndy
11 months ago
I think the Canvas OAuth flow is the way to go. It allows the third-party app to authenticate directly with Salesforce, which seems more straightforward than going through UC's IdP.
upvoted 0 times
...
Providencia
11 months ago
I think option A and B could work for authenticating the third-party app.
upvoted 0 times
...
Herminia
11 months ago
The SAML Single Sign-on flow seems like the most secure option to authenticate the third-party app against UC's IdP. This ensures that the app is validated before accessing Salesforce.
upvoted 0 times
Nohemi
10 months ago
B) Utilize Authorization Providers to allow the third-party application to authenticate itself against Salesforce as the Idp.
upvoted 0 times
...
Donte
10 months ago
A) Utilize the SAML Single Sign-on flow to allow the third-party to authenticate itself against UC's IdP.
upvoted 0 times
...
...

Save Cancel