Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Salesforce Plat-Arch-204 Exam - Topic 4 Question 5 Discussion

Actual exam question for Salesforce's Plat-Arch-204 exam
Question #: 5
Topic #: 4
[All Plat-Arch-204 Questions]

Northern Trail Outfitters requires an integration to be set up between one of its Salesforce orgs and an External Data Source using Salesforce Connect. The External Data Source supports Open Data Protocol. Which configuration should an integration architect recommend be implemented in order to secure requests coming from Salesforce?

Show Suggested Answer Hide Answer
Suggested Answer: C

In the context of Salesforce Connect, securing the integration depends heavily on how the platform authenticates with the external system. The Identity Type configuration is the fundamental security setting for an External Data Source.

The architect must choose between two Identity Types:

Named Principal: Salesforce uses the same set of credentials for all users to access the external system. This is simple to manage but does not allow the external system to distinguish between individual Salesforce users for auditing or permission purposes.

Per User: Each Salesforce user must have their own credentials for the external system. This is the most secure option as it ensures that the data visible in Salesforce respects the specific permissions the user has in the source system.

By correctly configuring the Identity Type, the architect ensures that the requests coming from Salesforce are properly authorized at the target system. Option B (CSRF Protection) is a security measure to prevent cross-site request forgery but is not the primary mechanism for authenticating the Salesforce service itself. Option A is a technical compatibility setting for non-standard OData implementations and does not directly relate to security. Therefore, recommending the appropriate Identity Type---typically 'Per User' for sensitive data---is the key step in securing the OData connection.


by Kimbery at Dec 20, 2025, 09:19 AM

Limited Time Offer

25%

Off

Get Premium Plat-Arch-204 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Valentin
4 days ago
I thought OData connections were always secure by default?
upvoted 0 times
...
Lizbeth
9 days ago
C is important too, but I think A is the best choice here.
upvoted 0 times
...
Ammie
14 days ago
Wait, is B even a real option? Sounds sketchy.
upvoted 0 times
...
Desmond
20 days ago
I agree, security is key with external data sources.
upvoted 0 times
...
Kasandra
25 days ago
A) Configure a certificate for OData connection is the way to go!
upvoted 0 times
...
Samira
30 days ago
I vaguely remember that special compatibility was mentioned in our notes, but it seems less relevant compared to the other options.
upvoted 0 times
...
Francis
1 month ago
I feel like configuring the identity type could be important for security, but I can't recall the specifics of how it works with OData.
upvoted 0 times
...
Bettina
2 months ago
I think we practiced a similar question where we had to choose between certificates and identity types. I might lean towards option A, but I need to double-check.
upvoted 0 times
...
Dannie
2 months ago
I remember we discussed securing OData connections in class, but I'm not entirely sure which option is the best for this scenario.
upvoted 0 times
...
Mariann
2 months ago
C is the only option that makes sense. Securing the connection is non-negotiable.
upvoted 0 times
...
Rashad
2 months ago
Haha, "Special Compatibility"? What is this, the 90s? C is the clear winner.
upvoted 0 times
...
Isadora
3 months ago
C is the way to go. Gotta keep that data safe, yo!
upvoted 0 times
...
Gearldine
3 months ago
Definitely C. Securing the OData connection is crucial for data integrity.
upvoted 0 times
...
Aleisha
3 months ago
I'm a little confused by the "Special Compatibility" option. I'm not sure what that would entail or how it would help secure the connection. I think I'd want to research that one a bit more before considering it.
upvoted 0 times
...
Stephaine
3 months ago
I'm leaning towards option C, configuring the Identity Type. That seems like it would be the most straightforward way to secure the requests coming from Salesforce to the External Data Source.
upvoted 0 times
...
Beckie
3 months ago
Okay, let's think this through. The question mentions that the External Data Source supports Open Data Protocol, so I'd focus on the options related to that. Configuring the Identity Type for the OData connection could be the way to go to ensure secure authentication.
upvoted 0 times
...
Antonio
3 months ago
Hmm, I'm a bit unsure about this one. I know we need to secure the connection, but I'm not sure if configuring a certificate is the right approach or if there are other options I should be considering.
upvoted 0 times
...
William
4 months ago
I think I'd start by looking at the options and considering the security implications of each. Configuring a certificate for the OData connection seems like it could be a good way to secure the requests.
upvoted 0 times
...
Stephaine
4 months ago
Agreed, A makes sense. Certificates add a layer of protection.
upvoted 0 times
...
Simona
4 months ago
I think option A is the best choice. Security is key!
upvoted 0 times
...
Stephanie
4 months ago
C) Configure Identity Type for OData connection.
upvoted 0 times
...

Save Cancel