New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Salesforce Plat-Arch-204 Exam - Topic 4 Question 5 Discussion

Actual exam question for Salesforce's Plat-Arch-204 exam
Question #: 5
Topic #: 4
[All Plat-Arch-204 Questions]

Northern Trail Outfitters requires an integration to be set up between one of its Salesforce orgs and an External Data Source using Salesforce Connect. The External Data Source supports Open Data Protocol. Which configuration should an integration architect recommend be implemented in order to secure requests coming from Salesforce?

Show Suggested Answer Hide Answer
Suggested Answer: C

In the context of Salesforce Connect, securing the integration depends heavily on how the platform authenticates with the external system. The Identity Type configuration is the fundamental security setting for an External Data Source.

The architect must choose between two Identity Types:

Named Principal: Salesforce uses the same set of credentials for all users to access the external system. This is simple to manage but does not allow the external system to distinguish between individual Salesforce users for auditing or permission purposes.

Per User: Each Salesforce user must have their own credentials for the external system. This is the most secure option as it ensures that the data visible in Salesforce respects the specific permissions the user has in the source system.

By correctly configuring the Identity Type, the architect ensures that the requests coming from Salesforce are properly authorized at the target system. Option B (CSRF Protection) is a security measure to prevent cross-site request forgery but is not the primary mechanism for authenticating the Salesforce service itself. Option A is a technical compatibility setting for non-standard OData implementations and does not directly relate to security. Therefore, recommending the appropriate Identity Type---typically 'Per User' for sensitive data---is the key step in securing the OData connection.


by Kimbery at Dec 20, 2025, 09:19 AM

Limited Time Offer

25%

Off

Get Premium Plat-Arch-204 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Bettina
7 days ago
I think we practiced a similar question where we had to choose between certificates and identity types. I might lean towards option A, but I need to double-check.
upvoted 0 times
...
Dannie
13 days ago
I remember we discussed securing OData connections in class, but I'm not entirely sure which option is the best for this scenario.
upvoted 0 times
...
Mariann
18 days ago
C is the only option that makes sense. Securing the connection is non-negotiable.
upvoted 0 times
...
Rashad
23 days ago
Haha, "Special Compatibility"? What is this, the 90s? C is the clear winner.
upvoted 0 times
...
Isadora
28 days ago
C is the way to go. Gotta keep that data safe, yo!
upvoted 0 times
...
Gearldine
1 month ago
Definitely C. Securing the OData connection is crucial for data integrity.
upvoted 0 times
...
Aleisha
1 month ago
I'm a little confused by the "Special Compatibility" option. I'm not sure what that would entail or how it would help secure the connection. I think I'd want to research that one a bit more before considering it.
upvoted 0 times
...
Stephaine
1 month ago
I'm leaning towards option C, configuring the Identity Type. That seems like it would be the most straightforward way to secure the requests coming from Salesforce to the External Data Source.
upvoted 0 times
...
Beckie
2 months ago
Okay, let's think this through. The question mentions that the External Data Source supports Open Data Protocol, so I'd focus on the options related to that. Configuring the Identity Type for the OData connection could be the way to go to ensure secure authentication.
upvoted 0 times
...
Antonio
2 months ago
Hmm, I'm a bit unsure about this one. I know we need to secure the connection, but I'm not sure if configuring a certificate is the right approach or if there are other options I should be considering.
upvoted 0 times
...
William
2 months ago
I think I'd start by looking at the options and considering the security implications of each. Configuring a certificate for the OData connection seems like it could be a good way to secure the requests.
upvoted 0 times
...
Stephaine
2 months ago
Agreed, A makes sense. Certificates add a layer of protection.
upvoted 0 times
...
Simona
2 months ago
I think option A is the best choice. Security is key!
upvoted 0 times
...
Stephanie
2 months ago
C) Configure Identity Type for OData connection.
upvoted 0 times
...

Save Cancel