Online Access Free Salesforce.Identity-and-Access-Management-Designer.v2023-02-27.q76 Practice Test (Page 8)

Identity-and-Access-Management-Designer Exam Question 31

Sales users at Universal containers use salesforce for Opportunity management. Marketing uses a third-party application called Nest for Lead nurturing that is accessed using username/password. The VP of sales wants to open up access to nest for all sales uses to provide them access to lead history and would like SSO for better adoption. Salesforce is already setup for SSO and uses Delegated Authentication. Nest can accept username/Password or SAML-based Authentication. IT teams have received multiple password-related issues for nest and have decided to set up SSO access for Nest for Marketing users as well. The CIO does not want to invest in a new IDP solution and is considering using Salesforce for this purpose. Which are appropriate license type choices for sales and marketing users, giving salesforce is using Delegated Authentication? Choose 2 answers

A.Identity license for sales users and Identity connect license for Marketing users

B.Salesforce license for sales users and platform license for Marketing users.

C.Salesforce license for sales users and Identity license for Marketing users

D.Salesforce license for sales users and External Identity license for Marketing users

Identity-and-Access-Management-Designer Exam Question 32

An identity architect has built a native mobile application and plans to integrate it with a Salesforce Identity solution. The following are the requirements for the solution:
1. Users should not have to login every time they use the app.
2. The app should be able to make calls to the Salesforce REST API.
3. End users should NOT see the OAuth approval page.
How should the identity architect configure the Salesforce connected app to meet the requirements?

A.Enable the API Scope and Offline Access Scope on the connected app, and then set the connected app to access settings to 'Admin Pre-Approved".

B.Enable the Full Access Scope and then set the connected app access settings to "Admin Pre-Approved".

C.Enable the API Scope and Offline Access Scope on the connected app, and then set the Connected App access settings to "User may self authorize".

D.Enable the API Scope and Offline Access Scope, upload a certificate so JWT Bearer Flow can be used and then set the connected app access settings to "Admin Pre-Approved".

Identity-and-Access-Management-Designer Exam Question 33

Northern Trail Outfitters would like to use a portal built on Salesforce Experience Cloud for customer self-service. Guests of the portal be able to self-register, but be unable to automatically be assigned to a contact record until verified. External Identity licenses have bee purchased for the project.
After registered guests complete an onboarding process, a flow will create the appropriate account and contact records for the user.
Which three steps should an identity architect follow to implement the outlined requirements?
Choose 3 answers

A.Customize the self-registration Apex handler to temporarily associate the user to a shared single contact record.

B.Set jp an external login page and call Salesforce APIs for user creation.

C.Select the "Configurable Self-Reg Page" option under Login & Registration.

D.Enable "Allow customers and partners to self-register".

E.Customize me self-registration Apex handler to create only the user record.

Identity-and-Access-Management-Designer Exam Question 34

Which two security risks can be mitigated by enabling Two-Factor Authentication (2FA) in Salesforce? Choose 2 answers

A.Users leaving laptops unattended and not logging out of Salesforce.

B.Users creating simple-to-guess password reset questions.

C.Users accessing Salesforce from a public Wi-Fi access point.

D.Users choosing passwords that are the same as their Facebook password.

Identity-and-Access-Management-Designer Exam Question 35

Which two are valid choices for digital certificates when setting up two-way SSL between Salesforce and an external system. Choose 2 answers

A.Use a trusted CA-signed certificate for salesforce and a self-signed cert for the external system

B.Use a self-signed certificate for salesforce and a trusted CA-signed cert for the external system

C.Use a trusted CA-signed certificate for salesforce and a trusted CA-signed cert for the external system

D.Use a self-signed certificate for salesforce and a self-signed cert for the external system

Other Version: 6457Salesforce.Identity-and-Access-Management-Designer.v2022-03-28.q128; 89Salesforce.Lead1pass.Identity-and-Access-Management-Designer.v2022-01-20.by.bblythe.128q.pdf; 2485Salesforce.Identity-and-Access-Management-Designer.v2021-10-16.q79; 101Salesforce.Lead2passed.Identity-and-Access-Management-Designer.v2021-08-08.by.melissa.85q.pdf

Latest Upload: 140CrowdStrike.CCSE-204.v2026-06-12.q25; 160VMware.2V0-17.25.v2026-06-12.q49; 147Appian.ACA-100.v2026-06-11.q23; 202CompTIA.220-1202.v2026-06-11.q114; 162CheckPoint.156-590.v2026-06-11.q47; 221CompTIA.220-1202.v2026-06-10.q109; 194CertiProf.CEHPC.v2026-06-10.q54; 151Hitachi.HQT-4160.v2026-06-10.q25; 387PMI.PMI-ACP-CN.v2026-06-09.q453; 190Splunk.SPLK-5002.v2026-06-08.q52

Identity-and-Access-Management-Designer Exam Question 31

Identity-and-Access-Management-Designer Exam Question 32

Identity-and-Access-Management-Designer Exam Question 33

Identity-and-Access-Management-Designer Exam Question 34

Identity-and-Access-Management-Designer Exam Question 35

Download PDF File