Salesforce prepway identity And Access Management Designer Identity-and-access-management-architect Release Date by Payton q49 vce pdf

Page: 15 / 17

Exam Name:	Salesforce Certified Platform Identity and Access Management Architect (Plat-Arch-203)
Exam Code:	Identity-and-Access-Management-Architect Dumps
Vendor:	Salesforce	Certification:	Identity and Access Management Designer
Questions:	243 Q&A's	Shared By:	payton

Question 60

A security architect is rolling out a new multi-factor authentication (MFA) mandate, where all employees must go through a secure authentication process before accessing Salesforce. There are multiple Identity Providers (IdP) in place and the architect is considering how the "Authentication Method Reference" field (AMR) in the Login History can help.

Which two considerations should the architect keep in mind?

Choose 2 answers

Options:

AMR field shows the authentication methods used at IdP.

Both OIDC and Security Assertion Markup Language (SAML) are supported but AMR must be implemented at IdP.

High-assurance sessions must be configured under Session Security Level Policies.

Dependency on what is supported by OpenID Connect (OIDC) implementation at IdP.

Discussion

Question 61

The security team at Universal containers(UC) has identified exporting reports as a high-risk action and would like to require users to be logged into salesforce with their active directory (AD) credentialswhen doing so. For all other uses of Salesforce, Users should be allowed to use AD credentials or salesforce credentials. What solution should be recommended to prevent exporting reports except when logged in using AD credentials while maintaining the ability to view reports when logged in with salesforce credentials?

Options:

Use SAML Federated Authentication and Custom SAML jit provisioning to dynamically add or remove a permission set that grants the Export Reports permission.

Use SAML Federated Authentication, treat SAML sessions as high assurance, and raise the session level required for exporting reports.

Use SAML Federated Authentication and block access to reports when accesses through a standard assurance session.

Use SAML Federated Authentication with a login flow to dynamically add or remove a permission set that grants the export reports permission.

Discussion

Question 62

Universal Containers (UC) uses Salesforce as a CRM and identity provider (IdP) for their Sales Team to seamlessly login to intemaJ portals. The IT team at UC is now evaluating Salesforce to act as an IdP for its remaining employees.

Which Salesforce license is required to fulfill this requirement?

Options:

External Identity

IdentityVerification

Identity Connect

Identity Only

Discussion

Walter

Yayyy!!! I passed my exam with the help of Cramkey Dumps. Highly appreciated!!!!

Angus Oct 14, 2025

YES….. I saw the same questions in the exam.

Conor

I recently used these dumps for my exam and I must say, I was impressed with their authentic material.

Yunus Oct 23, 2025

Exactly…….The information in the dumps is so authentic and up-to-date. Plus, the questions are very similar to what you'll see on the actual exam. I felt confident going into the exam because I had studied using Cramkey Dumps.

Norah

Cramkey is highly recommended.

Zayan Oct 19, 2025

Definitely. If you're looking for a reliable and effective study resource, look no further than Cramkey Dumps. They're simply wonderful!

Josie

I just passed my certification exam using their dumps and I must say, I was thoroughly impressed.

Fatimah Oct 15, 2025

You’re right. The dumps were authentic and covered all the important topics. I felt confident going into the exam and it paid off.

Faye

Yayyyy. I passed my exam. I think all students give these dumps a try.

Emmeline Oct 18, 2025

Definitely! I have no doubt new students will find them to be just as helpful as I did.

Question 63

Universal Container's (UC) is using Salesforce Experience Cloud site for its containerwholesale business. The identity architect wants to an authentication provider for the new site.

Which two options should be utilized in creating an authentication provider?

Choose 2 answers

Options:

A custom registration handier can be set.

A custom error URL can be set.

The default login user can be set.

The default authentication provider certificate can be set.