Question 1

Universal Containers (UC) operates in Asia, Europe and North America regions. There is one Salesforce org

for each region. UC is implementing Customer 360 in Salesforce and has procured External Identity and

Customer Community licenses in all orgs.

Customers of UC use Community to track orders and create inquiries. Customers also tend to move across

regions frequently.

What should an identity architect recommend to optimize license usage and reduce maintenance overhead?

Options :

A : Merge three orgs into one instance of Salesforce. This will no longer require maintaining three separate copies of the same customer.

B : Delete contact/ account records and deactivate user if user moves from a specific region; Sync will no longer be required.

C : Contacts are required since Community access needs to be enabled. Maintenance is a necessary overhead that must be handled via data integration.

D : Enable Contactless User in all orgs and downgrade users from Experience Cloud license to External Identity license once users have moved out of that region.

Answer: C

Question 2

What information does the 'Relaystate' parameter contain in sp-Initiated Single Sign-on?

Options :

A : Reference to a URL redirect parameter at the identity provider.

B : Reference to a URL redirect parameter at the service provider.

C : Reference to the login address URL of the service provider.

D : Reference to the login address URL of the identity Provider.

Answer: B

Question 3

Universal Containers (UC) has an existing e-commerce platform and is implementing a new customer community. They do not want to force customers to register on both applications due to concern over the customers experience. It is expected that 25% of the e-commerce customers will utilize the customer community . The e-commerce platform is capable of generating SAML responses and has an existing REST-ful API capable of managing users. How should UC create the identities of its e-commerce users with the customer community?

Options :

A : Use SAML JIT in the Customer Community to create users when a user tries to login to the community from the e-commerce site.

B : Use the e-commerce REST API to create users when a user self-register on the customer community and use SAML to allow SSO.

C : Use a nightly batch ETL job to sync users between the Customer Community and the e-commerce platform and use SAML to allow SSO.

D : Use the standard Salesforce API to create users in the Community When a User is Created in the e-Commerce platform and use SAML to allow SSO.

Answer: A

Question 4

Universal containers wants to build a custom mobile app connecting to salesforce using Oauth, and would like

to restrict the types of resources mobile users can access. What Oauth feature of Salesforce should be used to

achieve the goal?

Options :

A :

Access Tokens

B :

Mobile pins

C : Refresh Tokens

D : Scopes

Answer: D

Question 5

A large consumer company is planning to create a community and will requ.re login through the customers

social identity. The following requirements must be met:

1. The customer should be able to login with any of their social identities, however salesforce should only

have one user per customer.

2. Once the customer has been identified with a social identity, they should not be required to authonze

Salesforce.

3. The customers personal details from the social sign on need to be captured when the customer logs into

Salesforce using their social Identity.

3. If the customer modifies their personal details in the social site, the changes should be updated in Salesforce

.

Which two options allow the Identity Architect to fulfill the requirements?

Choose 2 answers

Options :

A :

Use Login Flows to call an authentication registration handler to provision the user before logging the

user into the community.

B :

Use authentication providers for social sign-on and use the custom registration handler to insert or

update personal details.

C : Redirect the user to a custom page that allows the user to select an existing social identity for login

D : Use the custom registration handler to link social identities to Salesforce identities.

Answer: B,D

Smartly Prepare Exam with Free Online Identity-and-Access-Management-Architect Practice Test

Buying Options: