Free Salesforce Identity-and-Access-Management-Architect Exam Questions

Become Salesforce Certified with updated Identity-and-Access-Management-Architect exam questions and correct answers

Page: 1 / 50

Total 250 Questions | Updated On: Jan 27, 2025

Add To Cart

Question 1

Northern Trail Outfitters want to allow its consumer to self-register on it business-to-consumer (B2C) portal

that is built on Experience Cloud. The identity architect has recommended to use Person Accounts.

Which three steps need to be configured to enable self-registration using person accounts?

Choose 3 answers

A : able access to person and business account record types under Public Access Settings.

B : ntact Salesforce Support to enable business accounts.

C : der Login and Registration settings, ensure that the default account field is empty.

D : ntact Salesforce Support to enable person accounts.

E : Set organization-wide default sharing for Contact to Public Read Only.

Answer: A,C,D

Question 2

Northern Trail Outfitters would like to automatically create new employee users in Salesforce with an

appropriate profile that maps to its Active Directory Department.

How should an identity architect implement this requirement?

A : Use the createUser method in the Just-in-Time (JIT) provisioning registration handler to assign theappropriate profile.

B : Use the updateUser method in the Just-in-Time (JIT) provisioning registration handler to assign theappropriate profile.

C : Use a login flow to collect Security Assertion Markup Language attributes and assign the appropriateprofile during Just-In-Time(JIT) provisioning.

D : Make a callout during the login flow to query department from Active Directory to assign theappropriate profile.

Answer: B

Question 3

Universal Containers (UC) wants to implement SAML SSO for their internal of Salesforce users using a third-party IdP. After some evaluation, UC decides NOT to 65« set up My Domain for their Salesforce org. How does that decision impact their SSO implementation?

A : P-initiated SSO will NOT work.

B : ither SP- nor IdP-initiated SSO will work.

C : ther SP- or IdP-initiated SSO will work.

D : -initiated SSO will NOT work

Answer: B

Question 4

Universal containers wants to build a custom mobile app connecting to salesforce using Oauth, and would like

to restrict the types of resources mobile users can access. What Oauth feature of Salesforce should be used to

achieve the goal?

A : Access Tokens

B : Mobile pins

C : fresh Tokens

D : opes

Answer: D

Question 5

Universal Containers (UC) has a Customer Community that uses Facebook for Authentication. UC would like to ensure that Changes in the Facebook profile are reflected on the appropriate Customer Community user: How can this requirement be met?

A : the updateUser method on the registration Handler Class.

B : velop a scheduled job that calls out to Facebook on a nightly basis.

C : information in the signed Request that is received from facebook.

D : SAML Just-In-Time Provisioning between Facebook and Salesforce.

Answer: A

Page: 1 / 50

Total 250 Questions | Updated On: Jan 27, 2025

Add To Cart