Salesforce dumpsboss changed Identity-and-access-management-architect Exam Questions by Marcel q99 vce pdf

Page: 3 / 17

Exam Name:	Salesforce Certified Platform Identity and Access Management Architect (Plat-Arch-203)
Exam Code:	Identity-and-Access-Management-Architect Dumps
Vendor:	Salesforce	Certification:	Identity and Access Management Designer
Questions:	243 Q&A's	Shared By:	marcel

Question 12

Universal Containers (UC) is building a custom employee hut) application on Amazon Web Services (AWS) and would like to store their users' credentials there. Users will also need access to Salesforce for internal operations. UC has tasked an identity architect with evaluating Afferent solutions for authentication and authorization between AWS and Salesforce.

How should an identity architect configure AWS to authenticate and authorize Salesforce users?

Options:

Configure the custom employee app as a connected app.

Configure AWS as an OpenID Connect Provider.

Create a custom external authentication provider.

Develop a customAuth server in AWS.

Discussion

Question 13

Which two considerations should be made whenimplementing Delegated Authentication?

Choose 2 answers

Options:

The authentication web service can include custom attributes.

It can be used to authenticate API clients and mobile apps.

It requires trusted IP ranges at the User Profile level.

Salesforce servers receive but do not validate a user’s credentials.

Just-in-time Provisioning can be configured for new users.

Discussion

Question 14

Which three types of attacks would a 2-Factor Authentication solution help garden against?

Options:

Key logging attacks

Network perimeter attacks

Phishing attacks

Dictionary attacks

Man-in-the-middle attacks

Discussion

Answer:

A, C, D, E

Explanation:

A 2-Factor Authentication (2FA) solution is a type of multi-factor authentication (MFA) that requires users to provide two verification factors to access a system or application. The verification factors can be something the user knows (e.g., password), something the user has (e.g., phone), or something the user is (e.g., fingerprint). A 2FA solution can help prevent common cyberattacks that rely on stealing or guessing passwords, such as:

Key logging attacks: These are attacks where a malicious program records the keystrokes of a user, including their passwords, and sends them to the attacker. A 2FA solution can prevent this attack by requiring an additional factor that is not typed by the user, such as a verification code sent to their phone or a biometric scan.

Phishing attacks: These are attacks where an attacker sends a fake email or website that looks like it came from a trusted source,and tricks the user into providing their credentials or other sensitive information. A 2FA solution can prevent this attack by requiring an additional factor that is not known by the attacker, such as a verification code generated by an authenticator appor a hardware token.

Dictionary attacks: These are attacks where an attacker tries to guess a user’s password by using a list of common or likely passwords, such as “password” or “123456”. A 2FA solution can prevent this attack by requiring an additional factor that is not based on a password, such as a fingerprint scan or a facial recognition.

A man-in-the-middle attack is when an attacker intercepts and alters the communication between two parties, such as a user and a website. A 2-Factor Authentication solution can help prevent this type of attack by requiring a second factor of authentication thatthe attacker cannot access or spoof, such as a code sent to the user’s phone or a hardware token

[References: 1: What Is Two-Factor Authentication (2FA)? | Microsoft Security 2: What type of attacks does Multi-Factor Authentication prevent?, , , ]

Conor

I recently used these dumps for my exam and I must say, I was impressed with their authentic material.

Yunus Dec 28, 2025

Exactly…….The information in the dumps is so authentic and up-to-date. Plus, the questions are very similar to what you'll see on the actual exam. I felt confident going into the exam because I had studied using Cramkey Dumps.

Ilyas

Definitely. I felt much more confident and prepared because of the Cramkey Dumps. I was able to answer most of the questions with ease and I think that helped me to score well on the exam.

Saoirse Dec 20, 2025

That's amazing. I'm glad you found something that worked for you. Maybe I should try them out for my next exam.

Fatima

Hey I passed my exam. The world needs to know about it. I have never seen real exam questions on any other exam preparation resource like I saw on Cramkey Dumps.

Niamh Dec 9, 2025

That's true. Cramkey Dumps are simply the best when it comes to preparing for the certification exam. They have all the key information you need and the questions are very similar to what you'll see on the actual exam.

Vienna

I highly recommend them. They are offering exact questions that we need to prepare our exam.

Jensen Dec 17, 2025

That's great. I think I'll give Cramkey a try next time I take a certification exam. Thanks for the recommendation!

Alaya

Best Dumps among other dumps providers. I like it so much because of their authenticity.

Kaiden Dec 28, 2025

That's great. I've used other dump providers in the past and they were often outdated or had incorrect information. This time I will try it.

Question 15

When designing a multi-branded Customer Identity and Access Management solution on the Salesforce Platform, how should an identity architect ensure a specific brand experience in Salesforce is presented?

Options:

The Experience ID, which can be included in OAuth/Open ID flows and Security Assertion Markup Language (SAML) flows as a URL parameter.

Provide a brand picker that the end user can use to select its sub-brand when they arrive on salesforce.

Add a custom parameter to the service provider's OAuth/SAML call and implement logic on its login page to apply branding based on the parameters value.

The Audience ID, which can be set in a shared cookie.