Free Preparation Discussions
MENU
Salesforce Certified Identity and Access Management Architect Exam Questions
- Topic 1: Identity Management Concepts: This topic covers common authentication patterns, building blocks of identity solutions (authentication, authorization, accountability), and establishing trust between systems. It also includes methods for provisioning users in Salesforce and troubleshooting common points of failure in SSO solutions.
- Topic 2: Accepting Third-Party Identity in Salesforce: It discusses cases where Salesforce acts as a Service Provider (SP), methods for provisioning users from identity stores (B2E, B2C), appropriate authentication mechanisms for accepting third-party identities, and ways to provision users to enable SSO while applying access rights. Moreover, the topic also addresses auditing, monitoring approaches, and tools to diagnose IdP issues.
- Topic 3: Salesforce as an Identity Provider: In this topic, you'll find information on OAuth flows, configuring Connected Apps for authorization, and implementation concepts of OAuth. It also recommends Salesforce technologies to provide identity to third-party systems.
- Topic 4: Access Management Best Practices: This topic covers methods of multi-factor authentication (MFA), assigning roles, profiles, and permission sets during SSO, auditing and verifying activity post-login, and configuring settings for a Connected App.
- Topic 5: Salesforce Identity: This topic explains the role of Identity Connect in Salesforce Identity implementations, the fit of Salesforce Customer 360 Identity in a comprehensive Customer 360 solution, and recommendations for Salesforce license types based on specific requirements.
- Topic 6: Community (Partner and Customer): Here, you'll find details on customizing user experiences in Experience Cloud, supporting external IdPs in communities, understanding External Identity solutions and associated licenses, and when to use embedded login based on different scenarios.
Free Salesforce Salesforce Certified Identity and Access Management Architect Exam Actual Questions
Note: Premium Questions for Salesforce Certified Identity and Access Management Architect were last updated On Jul. 19, 2024 (see below)
Northern Trail Outfitters (NTO) has an off-boarding process where a terminated employee is first disabled in the Lightweight Directory Act Protocol (LDAP) directory, then requests are sent to the various application support teams to finish user deactivations. A terminated employee recently was able to login to NTO's Salesforce instance 24 hours after termination, even though the user was disabled in the corporate LDAP directory.
What should an identity architect recommend to prevent this from happening in the future?
Northern Trail Outfitters (NTO) wants to improve its engagement with existing customers to boost customer loyalty. To get a better understanding of its customers, NTO establishes a single customer view including their buying behaviors, channel preferences and purchasing history. All of this information exists but is spread across different systems and formats.
NTO has decided to use Salesforce as the platform to build a 360 degree view. The company already uses Microsoft Active Directory (AD) to manage its users and company assets.
What should an Identity Architect do to provision, deprovision and authenticate users?
Northern Trail Outfitters (NTO) has an off-boarding process where a terminated employee is first disabled in the Lightweight Directory Act Protocol (LDAP) directory, then requests are sent to the various application support teams to finish user deactivations. A terminated employee recently was able to login to NTO's Salesforce instance 24 hours after termination, even though the user was disabled in the corporate LDAP directory.
What should an identity architect recommend to prevent this from happening in the future?
An insurance company has a connected app in its Salesforce environment that is used to integrate with a Google Workspace (formerly knot as G Suite).
An identity and access management (IAM) architect has been asked to implement automation to enable users, freeze/suspend users, disable users, and reactivate existing users in Google Workspace upon similar actions in Salesforce.
Which solution is recommended to meet this requirement?
Northern Trail Outfitters mar ages functional group permissions in a custom security application supported by a relational database and a REST service layer. Group permissions are mapped as permission sets in Salesforce.
Which action should an identity architect use to ensure functional group permissions are reflected as permission set assignments?
- Select Question Types you want
- Set your Desired Pass Percentage
- Allocate Time (Hours : Minutes)
- Create Multiple Practice tests with Limited Questions
- Customer Support
Sherly
25 days agoFannie
1 months agoKayleigh
2 months agoShalon
4 months ago