Free Access Salesforce.Identity-and-Access-Management-Architect.v2023-02-25.q77 Practice Test (Page 15)

Question 66

Universal Containers (UC) is setting up delegated authentication to allow employees to log in using their corporate credentials. UC's security team is concerned about the risks of exposing the corporate login service on the internet and has asked that a reliable trust mechanism be put in place between the login service and Salesforce.
What mechanism should an Architect put in place to enable a trusted connection between the login service and Salesforce?

A.Require the use of Salesforce security tokens on passwords.

B.Enforce mutual authentication between systems using SSL.

C.Set up a proxy service for the login service in the DMZ.

D.Include Client Id and Client Secret in the login header callout.

Question 67

architect is troubleshooting some SAML-based SSO errors during testing. The Architect confirmed that all of the Salesforce SSO settings are correct. Which two issues outside of the Salesforce SSO settings are most likely contributing to the SSO errors the Architect is encountering? Choose 2 Answers

A.The Issuer Certificate from the Identity Provider expired two weeks ago.

B.The default language for the Identity Provider and Salesforce are Different.

C.The clock on the Identity Provider server is twenty minutes behind Salesforce.

D.The Identity Provider is also used to SSO into five other applications.

Question 68

Which tool should be used to track login data, such as the average number of logins, who logged in more than the average number of times and who logged in during non-business hours?

A.Login Report

B.Login History

C.Login Forensics

D.Login Inspector

Question 69

What is one of the roles of an Identity Provider in a Single Sign-on setup using SAML?

A.Create token

B.Revoke token

C.Validate token

D.Consume token

Question 70

A multinational company is looking to rollout Salesforce globally. The company has a Microsoft Active Directory Federation Services (ADFS) implementation for the Americas, Europe and APAC. The company plans to have a single org and they would like to have all of its users access Salesforce using the ADFS . The company would like to limit its investments and prefer not to procure additional applications to satisfy the requirements.
What is recommended to ensure these requirements are met ?

A.Implement Identity Connect to provide single sign-on to Salesforce and federated across multiple ADFS systems.

B.Configure Each ADFS system under single sign-on settings and allow users to choose the system to authenticate during sign on to Salesforce-

C.Use connected apps for each ADFS implementation and implement Salesforce site to authenticate users across the ADFS system applicable to their geo.

D.Add a central identity system that federates between the ADFS systems and integrate with Salesforce for single sign-on.

Other Version: 1239Salesforce.Identity-and-Access-Management-Architect.v2024-03-01.q145

Latest Upload: 107Oracle.1z0-1196-25.v2025-09-12.q18; 106NetworkAppliance.NS0-162.v2025-09-12.q86; 146OCEG.GRCP.v2025-09-11.q211; 107HP.HPE0-V27.v2025-09-11.q78; 123Oracle.1Z0-1057-23.v2025-09-10.q47; 157Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 137SAP.C-S4EWM-2023.v2025-09-08.q83; 182TheSecOpsGroup.CNSP.v2025-09-08.q20; 262CFAInstitute.ESG-Investing.v2025-09-08.q173; 250PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132

Question 66

Question 67

Question 68

Question 69

Question 70

Download PDF File