Given a scenario, identify the risks and mitigation strategies that session security and Two-Factor Authentication enable (E.g. High Assurance Sessions, 2FA, etc.)

Session Security Session security is used to limit exposure to network when a user leaves the computer unattended while still logged in. It limits the risk of internal attacks, such as one employee tries to use another employee’s session.Session timeoutControl inactive user session expiry from Session settings page. Default value is 2 hours. When the […]

Given a scenario, determine the most appropriate Two-Factor Authentication mechanism for an identity solution.

2FA Login requirements and Custom Policies for Single Sign-On, Social Sign-On and Communities 2FA can be applied to all Salesforce user interface authentication methods that include username and password, delegated authentication, SAML SSO, Social Sign-On through an Auth Provider, to users in Salesforce orgs and Communities.To enable 2FA for users assigned to a particular profile, […]

Describe the risks that Two-Factor Authentication mechanisms aim to mitigate.

Introduction to Two – Factor Authentication Two-factor authentication is a security feature that can be enabled by admins to add a second layer of security during the authentication process. It is a security process that cross-verifies users with two different forms of identification to access their Salesforce application. These two forms typically include knowledge factors […]

Given a scenario, recommend the most appropriate Salesforce license type(s) to support the identity requirements.

Identity License Identity license grants users access to Identity features. Salesforce Identity connects Salesforce users with external applications and services while giving admins control over authentication and authorization for these users. Identity licenses are included with all paid user licenses in Enterprise, Performance, and Unlimited Editions. Ten free Identity user licenses are included with each […]

Describe the role(s) Identity Connect plays in an Identity Management solution.

Identity Connect integrates Microsoft Active Directory (AD) with Salesforce. User information entered in AD is shared with Salesforce seamlessly and instantaneously. Companies that use AD for user management can use Identity Connect to manage Salesforce accounts.Identity Connect enables you to upload user data from your enterprise data store (Active Directory) to one or more Salesforce […]

Describe the capabilities for customizing the registration experience for external communities (for example; Branding options, self-registration, communications, etc.)

Each community by default comes with login, logout, password management and self registration pages and Salesforce provides the underlying code (Apex controllers) for all this. Community Builder or Visualforce can be used to customize branding and this default behavior.Brand Community Login PageWe can use out own logo, change background colors, add a custom footer, and […]