최신 Identity-and-Access-Management-Architect 무료덤프 - Salesforce Certified Identity and Access Management Architect
A technology enterprise is planning to implement single sign-on login for users. When users log in to the Salesforce User object custom field, data should be populated for new and existing users.
Which two steps should an identity architect recommend?
Choose 2 answers
Which two steps should an identity architect recommend?
Choose 2 answers
정답: C,D
설명: (DumpTOP 회원만 볼 수 있음)
Which two security risks can be mitigated by enabling Two-Factor Authentication (2FA) in Salesforce?
Choose 2 answers
Choose 2 answers
정답: A,B
설명: (DumpTOP 회원만 볼 수 있음)
Universal containers (UC) does my domain enable in the context of a SAML SSO configuration? Choose 2 answers
정답: A,B
설명: (DumpTOP 회원만 볼 수 있음)
Northern Trail Outfitters (NTO) uses a Security Assertion Markup Language (SAML)-based Identity Provider (idP) to authenticate employees to all systems. The IdP authenticates users against a Lightweight Directory Access Protocol (LDAP) directory and has access to user information. NTO wants to minimize Salesforce license usage since only a small percentage of users need Salesforce.
What is recommended to ensure new employees have immediate access to Salesforce using their current IdP?
What is recommended to ensure new employees have immediate access to Salesforce using their current IdP?
정답: C
설명: (DumpTOP 회원만 볼 수 있음)
An identity architect's client has a homegrown identity provider (IdP). Salesforce is used as the service provider (SP). The head of IT is worried that during a SP initiated single sign-on (SSO), the Security Assertion Markup Language (SAML) request content will be altered.
What should the identity architect recommend to make sure that there is additional trust between the SP and the IdP?
What should the identity architect recommend to make sure that there is additional trust between the SP and the IdP?
정답: D
설명: (DumpTOP 회원만 볼 수 있음)
Northern Trail Outfitters (NTO) has a requirement to ensure all user logins include a single multi-factor authentication (MFA) prompt. Currently, users are allowed the choice to login with a username and password or via single sign-on against NTO's corporate Identity Provider, which includes built-in MFA.
Which configuration will meet this requirement?
Which configuration will meet this requirement?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
An architect needs to advise the team that manages the identity provider how to differentiate salesforce from other service providers. What SAML SSO setting in salesforce provides this capability?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
Universal Containers (UC) rolling out a new Customer Identity and Access Management Solution will be built on top of their existing Salesforce instance.
Several service providers have been setup and integrated with Salesforce using OpenlD Connect to allow for a seamless single sign-on experience. UC has a requirement to limit user access to only a subset of service providers per customer type.
Which two steps should be done on the platform to satisfy the requirement?
Choose 2 answers
Several service providers have been setup and integrated with Salesforce using OpenlD Connect to allow for a seamless single sign-on experience. UC has a requirement to limit user access to only a subset of service providers per customer type.
Which two steps should be done on the platform to satisfy the requirement?
Choose 2 answers
정답: B,C
설명: (DumpTOP 회원만 볼 수 있음)
A technology enterprise is setting up an identity solution with an external vendors wellness application for its employees. The user attributes need to be returned to the wellness application in an ID token.
Which authentication mechanism should an identity architect recommend to meet the requirements?
Which authentication mechanism should an identity architect recommend to meet the requirements?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)
What is one of the roles of an Identity Provider in a Single Sign-on setup using SAML?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)
Universal containers uses an Employee portal for their employees to collaborate. employees access the portal from their company's internal website via SSO. It is set up to work with Active Directory. What is the role of Active Directory in this scenario?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)
Universal Containers (UC) is using a custom application that will act as the Identity Provider and will generate SAML assertions used to log in to Salesforce. UC is considering including custom parameters in the SAML assertion. These attributes contain sensitive data and are needed to authenticate the users. The assertions are submitted to salesforce via a browser form post. The majority of the users will only be able to access Salesforce via UC's corporate network, but a subset of admins and executives would be allowed access from outside the corporate network on their mobile devices. Which two methods should an Architect consider to ensure that the sensitive data cannot be tampered with, nor accessible to anyone while in transit?
정답: A,B
설명: (DumpTOP 회원만 볼 수 있음)
Universal Containers (UC) wants its closed Won opportunities to be synced to a Data Warehouse in near real time. UC has implemented Outbound Message to enable near real-time data sync. UC wants to ensure that communication between Salesforce and Target System is Secure. What Certificate is sent along with the Outbound Message?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
Universal Containers (UC) has built a custom time tracking app for its employee. UC wants to leverage Salesforce Identity to control access to the custom app.
At a minimum, which Salesforce license is required to support this requirement?
At a minimum, which Salesforce license is required to support this requirement?
정답: C
설명: (DumpTOP 회원만 볼 수 있음)
Universal Containers (UC) uses middleware to integrate multiple systems with Salesforce. UC has a strict, new requirement that usernames and passwords cannot be stored in any UC system. How can UC's middleware authenticate to Salesforce while adhering to this requirement?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
A company with 15,000 employees is using Salesforce and would like to take the necessary steps to highlight or curb fraudulent activity.
Which tool should be used to track login data, such as the average number of logins, who logged in more than the average number of times and who logged in during non-business hours?
Which tool should be used to track login data, such as the average number of logins, who logged in more than the average number of times and who logged in during non-business hours?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)
Universal Containers is creating a mobile application that will be secured by Salesforce Identity using the OAuth 2.0 user-agent flow. Application users will authenticate using username and password. They should not be forced to approve API access in the mobile app or reauthenticate for 3 months.
Which two connected app options need to be configured to fulfill this use case?
Choose 2 answers
Which two connected app options need to be configured to fulfill this use case?
Choose 2 answers
정답: A,B
설명: (DumpTOP 회원만 볼 수 있음)
Northern Trail Outfitters (NTO) uses Salesforce for Sales Opportunity Management. Okta was recently brought in to Just-in-Time (JIT) provision and authenticate NTO users to applications. Salesforce users also use Okta to authorize a Forecasting web application to access Salesforce records on their behalf.
Which two roles are being performed by Salesforce?
Choose 2 answers
Which two roles are being performed by Salesforce?
Choose 2 answers
정답: C,D
설명: (DumpTOP 회원만 볼 수 있음)
Universal containers (UC) would like to enable self - registration for their salesforce partner community users.
UC wants to capture some custom data elements from the partner user, and based on these data elements, wants to assign the appropriate profile and account values. Which two actions should the architect recommend to UC? Choose 2 answers
UC wants to capture some custom data elements from the partner user, and based on these data elements, wants to assign the appropriate profile and account values. Which two actions should the architect recommend to UC? Choose 2 answers
정답: B,D
설명: (DumpTOP 회원만 볼 수 있음)