Free Salesforce Identity-and-Access-Management-Architect Exam Questions

Become Salesforce Certified with updated Identity-and-Access-Management-Architect exam questions and correct answers

Page: 1 / 50

Total 250 Questions | Updated On: Jun 06, 2025

Add To Cart

Question 1

A technology enterprise is setting up an identity solution with an external vendors wellness application for its

employees. The user attributes need to be returned to the wellness application in an ID token.

Which authentication mechanism should an identity architect recommend to meet the requirements?

A : enID Connect

B : er Agent Flow

C : T Bearer Token Flow

D : Server Flow

Answer: D

Question 2

Universal Containers (UC) has built a custom token-based Two-factor authentication (2FA) system for their existing on-premise applications. They are now implementing Salesforce and would like to enable a Two-factor login process for it, as well. What is the recommended solution as Architect should consider?

A : the custom 2FA system for on-premise applications and native 2FA for Salesforce.

B : place the custom 2FA system with an AppExchange App that supports on premise application and salesforce.

C : Custom Login Flows to connect to the existing custom 2FA system for use in Salesforce.

D : place the custom 2FA system with Salesforce 2FA for on-premise applications and Salesforce.

Answer: D

Question 3

An Architect has configured a SAML-based SSO integration between Salesforce and an external Identity provider and is ready to test it. When the Architect attempts to log in to Salesforce using SSO, the Architect receives a SAML error. Which two optimal actions should the Architect take to troubleshoot the issue?

A : ure the Callback URL is correctly set in the Connected Apps settings.

B : a browser that has an add-on/extension that can inspect SAML.

C : te the SAML Assertion Validator in Salesforce.

D : the browser's Development tools to view the Salesforce page's markup.

Answer: B,C

Question 4

Universal Containers (UC) uses Salesforce to allow customers to keep track of the order status. The customers

can log in to Salesforce using external authentication providers, such as Facebook and Google. UC is also

leveraging the App Launcher to let customers access an of platform application for generating shipping labels.

The label generator application uses OAuth to provide users access. What license type should an Architect

recommend for the customers?

A : tomer Community license

B : entity license

C : tomer Community Plus license

D : ternal Identity license

Answer: B

Question 5

Universal containers (UC) would like to enable self - registration for their salesforce partner community users.

UC wants to capture some custom data elements from the partner user, and based on these data elements,

wants to assign the appropriate profile and account values. Which two actions should the architect recommend

to UC? Choose 2 answers

A : dify the communitiesselfregcontroller to assign the profile and account.

B : dify the selfregistration trigger to assign profile and account.

C : nfigure registration for communities to use a custom visualforce page.

D : nfigure registration for communities to use a custom apex controller.

Answer: A,C

Page: 1 / 50

Total 250 Questions | Updated On: Jun 06, 2025

Add To Cart