Universal Containers has built a custom token-based Two-Factor Authentication system for their existing on-premise applications. They are now implementing Salesforce and would like to enable a Two-Factor login process for it, as well.
What is the recommended solution an Architect should consider?

• A.Replace the custom 2FA system with Salesforce 2FA for on-premise applications and Salesforce.
• B.Use Custom Login Flows to connect to the existing custom 2FA system for use in Salesforce.
• C.Use the custom 2FA system for on-premise applications and native 2FA for Salesforce.
• D.Replace the custom 2FA system with an AppExchange App that supports on-premise applications and Salesforce.

Comment: *

Name: *

Email: *

Verification: *

Universal Containers (UC) currently uses Salesforce Sales Cloud and an external billing application. Both Salesforce and the billing application are accessed several times a day to manage customers. UC would like to configure single sign-on and leverage Salesforce as the identity provider. Additionally, UC would like the billing application to be accessible from Salesforce. A redirect is acceptable.
Which two Salesforce tools should an identity architect recommend to satisfy the requirements?
Choose 2 answers

• A.Identity Connect
• B.App Launcher
• C.salesforce Canvas
• D.Connected Apps

Comment: *

Name: *

Email: *

Verification: *

Universal Containers (UC) wants to integrate a web application with Salesforce. The UC team has implemented the OAuth Web-Server Authentication Flow for authentication purposes.
Which two considerations should an Architect point out to UC? (Choose two.)

• A.The web server must be able to protect consumer secret.
• B.The flow will NOT provide an OAuth Refresh Token back to the server.
• C.The flow involves passing the user credentials back and forth.
• D.The web application should be hosted on a secure server.

Comment: *

Name: *

Email: *

Verification: *

Which three types ofattacks would a 2-Factor Authentication solution help garden against?

• A.Man-in-the-middle attacks
• B.Phishing attacks
• C.Key logging attacks
• D.Dictionary attacks
• E.Network perimeter attacks

Comment: *

Name: *

Email: *

Verification: *

Universal Containers (UC) has an existing web application that it would like to access from Salesforce without requiring users to re-authenticate. The web application is owned UC and the UC team that is responsible for it is willing to add new javascript code and/or libraries to the application. What implementation should an Architect recommend to UC?

• A.Rewrite the web application as a set of Visualforce pages and Apex code.
• B.Add the web application as a ConnectedApp using OAuth User-Agent flow.
• C.Create a Canvas app and use Signed Requests to authenticate the users.
• D.Configure the web application as an item in the Salesforce App Launcher.

Comment: *

Name: *

Email: *

Verification: *