Salesforce Exam Identity and Access Management Architect Topic 4 Question 16 Discussion

Actual exam question for Salesforce's Identity and Access Management Architect exam

Question #: 16
Topic #: 4

[All Identity and Access Management Architect Questions]

Universal Containers (UC) is building an integration between Salesforce and a legacy web applications using the canvas framework. The security for UC has determined that a signed request from Salesforce is not an adequate authentication solution for the Third-Party app. Which two options should the Architect consider for authenticating the third-party app using the canvas framework? Choose 2 Answers

AUtilize the SAML Single Sign-on flow to allow the third-party to authenticate itself against UC's IdP.

BUtilize Authorization Providers to allow the third-party appliction to authenticate itself against Salesforce as the Idp.

CUtilize Canvas OAuth flow to allow the third-party appliction to authenticate itself against Salesforce as the Idp.

DCreate a registration handler Apex class to allow the third-party appliction to authenticate itself against Salesforce as the Idp.

Show Suggested Answer

Suggested Answer: D

by Candida at Feb 08, 2023, 12:09 PM

Limited Time Offer

25%

Off

Get Premium Identity and Access Management Architect Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Lezlie

3 days ago

Maybe we should just tell the third-party app to use the 'password123' login credentials. That's secure, right?

upvoted 0 times

...

Fabiola

7 days ago

Wait, so we can't just use a signed request from Salesforce? That's like the easiest option! What's the point of having all these fancy authentication methods if a simple signed request won't work?

upvoted 0 times

...

Pauline

10 days ago

Creating a registration handler Apex class? Sounds like a lot of custom code just to authenticate the app. I'd rather go with a more standard solution like SAML or OAuth.

upvoted 0 times

...

Catalina

12 days ago

I'm not sure about option C and D. They might not provide the level of security needed for the integration.

upvoted 0 times

...

Janessa

15 days ago

I agree with Providencia. Using SAML Single Sign-on and Authorization Providers seems like a secure way to authenticate.

upvoted 0 times

...

Cyndy

19 days ago

I think the Canvas OAuth flow is the way to go. It allows the third-party app to authenticate directly with Salesforce, which seems more straightforward than going through UC's IdP.

upvoted 0 times

...

Providencia

19 days ago

I think option A and B could work for authenticating the third-party app.

upvoted 0 times

...

Herminia

20 days ago

The SAML Single Sign-on flow seems like the most secure option to authenticate the third-party app against UC's IdP. This ensures that the app is validated before accessing Salesforce.

upvoted 0 times

Donte

5 days ago

A) Utilize the SAML Single Sign-on flow to allow the third-party to authenticate itself against UC's IdP.

upvoted 0 times

...