1. Home
  2. Salesforce
  3. IDENTITY-AND-ACCESS-MANAGEMENT-DESIGNER

Salesforce IDENTITY-AND-ACCESS-MANAGEMENT-DESIGNER Online Practice Questions and Exam Preparation

IDENTITY-AND-ACCESS-MANAGEMENT-DESIGNER Exam Details

  • Exam Code
    :IDENTITY-AND-ACCESS-MANAGEMENT-DESIGNER
  • Exam Name
    :Salesforce Certified Platform Identity and Access Management Designer
  • Certification
    :Salesforce Certifications
  • Vendor
    :Salesforce
  • Total Questions
    :234 Q&As
  • Last Updated
    :Jan 07, 2025

Salesforce IDENTITY-AND-ACCESS-MANAGEMENT-DESIGNER Online Questions & Answers

  • Question 101:

    Universal Containers (UC) is building a custom Innovation platform on their Salesforce instance. The Innovation platform will be written completely in Apex and Visualforce and will use custom objects to store the Data. UC would like all users to be able to access the system without having to log in with Salesforce credentials. UC will utilize a third-party idp using SAML SSO. What is the optimal Salesforce licence type for all of the UC employees?

    A. Identity Licence.
    B. Salesforce Licence.
    C. External Identity Licence.
    D. Salesforce Platform Licence.

  • Question 102:

    Universal containers (UC) has implemented ansp-Initiated SAML flow between an external IDP and salesforce. A user at UC is attempting to login to salesforce1 for the first time and is being prompted for salesforce credentials instead of

    being shown the IDP login page.

    What is the likely cause of the issue?

    A. The "Redirect to Identity Provider" option has been selected in the my domain configuration.
    B. The user has not configured the salesforce1 mobile app to use my domain for login
    C. The "Redirect to identity provider" option has not been selected the SAML configuration.
    D. The user has not been granted the "Enable single Sign-on" permission

  • Question 103:

    An identity architect is implementing a mobile-first Consumer Identity Access Management (CIAM) for external users. User authentication is the only requirement. The users email or mobile phone number should be supported as a username.

    Which two licenses are needed to meet this requirement?

    Choose 2 answers

    A. External Identity Licenses
    B. Identity Connect Licenses
    C. Email Verification Credits
    D. SMS verification Credits

  • Question 104:

    Universal Containers (UC) wants to build a mobile application that twill be making calls to the Salesforce REST API. UC's Salesforce implementation relies heavily on custom objects and custom Apex code. UC does not want its users to have to enter credentials every time they use the app. Which two scope values should an Architect recommend to UC? Choose 2 answers.

    A. Custom_permissions
    B. Api
    C. Refresh_token
    D. Full

  • Question 105:

    Universal Containers uses Salesforce as an identity provider and Concur as the Employee Expense management system. The HR director wants to ensure Concur accounts for employees are created only after the appropnate approval in the Salesforce org.

    Which three steps should the identity architect use to implement this requirement?

    Choose 3 answers

    A. Create an approval process for a custom object associated with the provisioning flow.
    B. Create a connected app for Concur in Salesforce.
    C. Enable User Provisioning for the connected app.
    D. Create an approval process for user object associated with the provisioning flow.
    E. Create an approval process for UserProvisionlngRequest object associated with the provisioning flow.

  • Question 106:

    In an SP-Initiated SAML SSO setup where the user tries to access a resource on the Service Provider, What HTTP param should be used when submitting a SAML Request to the Idp to ensure the user is returned to the intended resourse after authentication?

    A. RedirectURL
    B. RelayState
    C. DisplayState
    D. StartURL

  • Question 107:

    An identity architect has been asked to recommend a solution that allows administrators to configure personalized alert messages to users before they land on the Experience Cloud site (formerly known as Community) homepage.

    What is recommended to fulfill this requirement with the least amount of customization?

    A. Customize the registration handler Apex class to create a routing logic navigating to different home pages based on the user profile.
    B. Use Login Flows to add a screen that shows personalized alerts.
    C. Build a Lightning web Component (LWC) for a homepage that shows custom alerts.
    D. Create custom metadata that stores user alerts and use a LWC to display alerts.

  • Question 108:

    Northern Trail Outfitters (NTO) is planning to implement a community for its customers using Salesforce Experience Cloud . Customers are not able to self-register. NTO would like to have customers set their own passwords when provided access to the community.

    Which two recommendations should an identity architect make to fulfill this requirement?

    Choose 2 answers

    A. Add customers as contacts and add them to Experience Cloud site.
    B. Enable Welcome emails while configuring the Experience Cloud site.
    C. Allow Password reset using the API to update Experience Cloud site membership.
    D. Use Login Flows to allow users to reset password in Experience Cloud site.

  • Question 109:

    Northern Trail Outfitters (NTO) uses Salesforce Experience Cloud sites (previously known as Customer Community) to provide a digital portal where customers can login using their Google account.

    NTO would like to automatically create a case record for first time users logging into Salesforce Experience Cloud.

    What should an Identity architect do to fulfill the requirement?

    A. Configure an authentication provider for Social Login using Google and a custom registration handler.
    B. Implement a Just-in-Time handler class that has logic to create cases upon first login.
    C. Create an authentication provider for Social Login using Google and leverage standard registration handler.
    D. Implement a login flow with a record create component for Case.

  • Question 110:

    Northern Trail Outfitters want to allow its consumer to self-register on it business-to- consumer (B2C) portal that is built on Experience Cloud. The identity architect has recommended to use Person Accounts.

    Which three steps need to be configured to enable self-registration using person accounts?

    Choose 3 answers

    A. Enable access to person and business account record types under Public Access Settings.
    B. Contact Salesforce Support to enable business accounts.
    C. Under Login and Registration settings, ensure that the default account field is empty.
    D. Contact Salesforce Support to enable person accounts.
    E. Set organization-wide default sharing for Contact to Public Read Only.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Salesforce exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your IDENTITY-AND-ACCESS-MANAGEMENT-DESIGNER exam preparations and Salesforce certification application, do not hesitate to visit our Vcedump.com to find your solutions here.