Free Access Salesforce.Identity-and-Access-Management-Designer.v2022-09-12.q117 Practice Test (Page 2)

Question 1

Which three different attributes can be used to identify the user in a SAML 65> assertion when Salesforce is acting as a Service Provider? Choose 3 answers

A.User Email Address

B.Federation ID

C.User Full Name

D.Salesforce User ID

E.Salesforce Username

Question 2

A security architect is rolling out a new multi-factor authentication (MFA) mandate, where all employees must go through a secure authentication process before accessing Salesforce. There are multiple Identity Providers (IdP) in place and the architect is considering how the "Authentication Method Reference" field (AMR) in the Login History can help.
Which two considerations should the architect keep in mind?
Choose 2 answers

A.Dependency on what is supported by OpenID Connect (OIDC) implementation at IdP.

B.Both OIDC and Security Assertion Markup Language (SAML) are supported but AMR must be implemented at IdP.

C.AMR field shows the authentication methods used at IdP.

D.High-assurance sessions must be configured under Session Security Level Policies.

Question 3

Universal Containers (UC) would like to enable SAML-based SSO for a Salesforce Partner Community. UC has an existing LDAP identity store and a third-party portal. They would like to use the existing portal as the primary site these users access, but also want to allow seamless access to the Partner Community.
What SSO flow should an Architect recommend?

A.User-Agent

B.IdP-Initiated

C.Web Server

D.SP-Initiated

Question 4

Universal Containers has built a custom token-based Two-Factor Authentication system for their existing on-premise applications. They are now implementing Salesforce and would like to enable a Two-Factor login process for it, as well.
What is the recommended solution an Architect should consider?

A.Replace the custom 2FA system with an AppExchange App that supports on-premise applications and Salesforce.

B.Replace the custom 2FA system with Salesforce 2FA for on-premise applications and Salesforce.

C.Use the custom 2FA system for on-premise applications and native 2FA for Salesforce.

D.Use Custom Login Flows to connect to the existing custom 2FA system for use in Salesforce.

Question 5

Which three are capabilities of SAML-based Federated authentication? Choose 3 answers

A.Trust relationships between Identity Provider and Service Provider are required.

B.SAML tokens can be in XML or JSON format and can be used interchangeably.

C.Centralized federation provides single point of access, control and auditing.

D.Web applications with no passwords are more secure and stronger against attacks.

E.Access tokens are used to access resources on the server once the user is authenticated.

Other Version: 913Salesforce.Identity-and-Access-Management-Designer.v2024-05-12.q103; 1366Salesforce.Identity-and-Access-Management-Designer.v2023-12-04.q134; 2620Salesforce.Identity-and-Access-Management-Designer.v2023-05-15.q135; 2510Salesforce.Identity-and-Access-Management-Designer.v2022-08-26.q100; 3668Salesforce.Identity-and-Access-Management-Designer.v2022-02-06.q103; 101Salesforce.Exams4sures.Identity-and-Access-Management-Designer.v2022-01-16.by.jared.82q.pdf

Latest Upload: 107Oracle.1z0-1196-25.v2025-09-12.q18; 106NetworkAppliance.NS0-162.v2025-09-12.q86; 146OCEG.GRCP.v2025-09-11.q211; 107HP.HPE0-V27.v2025-09-11.q78; 123Oracle.1Z0-1057-23.v2025-09-10.q47; 157Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 137SAP.C-S4EWM-2023.v2025-09-08.q83; 181TheSecOpsGroup.CNSP.v2025-09-08.q20; 262CFAInstitute.ESG-Investing.v2025-09-08.q173; 249PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132

Question 1

Question 2

Question 3

Question 4

Question 5

Download PDF File