Free Access Salesforce.Identity-and-Access-Management-Designer.v2023-12-04.q134 Practice Test (Page 25)

Question 116

The security team at Universal Containers (UC) has identified exporting reports as a high-risk action and would like to require users to be logged into Salesforce with their Active Directory (AD) credentials when doing so. For all other users of Salesforce, users should be allowed to use AD Credentials or Salesforce credentials. What solution should be recommended to prevent exporting reports except when logged in using AD credentials while maintaining the ability to view reports when logged in with Salesforce credentials?

A.Use SAML federated Authentication with a Login Flow to dynamically add or remove a Permission Set that grants the Export Reports Permission.

B.Use SAML Federated Authentication andblock access to reports when accessed through a Standard Assurance session.

C.Use SAML federatedAuthentication, treat SAML Sessions as High Assurance, and raise the session level required for exporting reports.

D.Use SAML Federated Authentication and Custom SAML JIT Provisioning to dynamically and or remove a permission set that grants the Export Reports Permission.

Question 117

Universal Containers (UC) uses Salesforce for its customer service agents. UC has a proprietary system for order tracking which supports Security Assertion Markup Language (SAML) based single sign-on. The VP of customer service wants to ensure only active Salesforce users should be able to access the order tracking system which is only visible within Salesforce.
What should be done to fulfill the requirement?
Choose 2 answers

A.Setup Order Tracking as a Canvas app in Salesforce to POST IdP initiated SAML assertion.

B.Set up the Corporate Identity store as an identity provider (IdP) for Order Tracking,

C.Customize Order Tracking to initiate a REST call to validate users in Salesforce after login.

D.Setup Salesforce as an identity provider (IdP) for order Tracking.

Question 118

Universal Containers (UC) wants its closed Won opportunities to be synced to a Data Warehouse in near real time. UC has implemented Outbound Message to enable near real-time data sync. UC wants to ensure that communication between Salesforce and Target System is Secure. What Certificate is sent along with the Outbound Message?

A.The default Client Certificate from the Develop--> API Menu.

B.The Self-Signed Certificates from the Certificate & Key Management menu.

C.The default Client Certificate or a Certificate from Certificate and Key Management menu.

D.The CA-Signed Certificate from the Certificate and Key Management menu.

Question 119

Uwversal Containers (UC) is building a custom employee hut) application on Amazon Web Services (AWS) and would like to store their users' credentials there. Users will also need access to Salesforce for internal operations. UC has tasked an identity architect with evaluating Afferent solutions for authentication and authorization between AWS and Salesforce.
How should an identity architect configure AWS to authenticate and authorize Salesforce users?

A.Create a custom external authentication provider.

B.Configure AWS as an OpenID Connect Provider.

C.Configure the custom employee app as a connected app.

D.Develop a custom Auth server in AWS.

Question 120

Northern Trail Outfitters (NTO) is planning to implement a community for its customers using Salesforce Experience Cloud . Customers are not able to self-register. NTO would like to have customers set their own passwords when provided access to the community.
Which two recommendations should an identity architect make to fulfill this requirement?
Choose 2 answers

A.Allow Password reset using the API to update Experience Cloud site membership.

B.Use Login Flows to allow users to reset password in Experience Cloud site.

C.Enable Welcome emails while configuring the Experience Cloud site.

D.Add customers as contacts and add them to Experience Cloud site.

Other Version: 1446Salesforce.Identity-and-Access-Management-Designer.v2024-05-12.q103; 3280Salesforce.Identity-and-Access-Management-Designer.v2023-05-15.q135; 3547Salesforce.Identity-and-Access-Management-Designer.v2022-09-12.q117; 2881Salesforce.Identity-and-Access-Management-Designer.v2022-08-26.q100; 4481Salesforce.Identity-and-Access-Management-Designer.v2022-02-06.q103; 101Salesforce.Exams4sures.Identity-and-Access-Management-Designer.v2022-01-16.by.jared.82q.pdf

Latest Upload: 201PaloAltoNetworks.NGFW-Engineer.v2026-05-01.q43; 296Nokia.4A0-113.v2026-05-01.q69; 253EC-COUNCIL.312-49v11.v2026-04-30.q214; 228Microsoft.MB-820.v2026-04-30.q101; 209Salesforce.MC-202.v2026-04-30.q57; 204BICSI.INSTC_V8.v2026-04-29.q53; 333NMLS.MLO.v2026-04-28.q82; 242NCARB.Project-Management.v2026-04-28.q27; 458EMC.D-AV-DY-23.v2026-04-27.q184; 1112ServiceNow.CSA.v2026-04-27.q483

Question 116

Question 117

Question 118

Question 119

Question 120

Download PDF File