I am preparing for my Identity and Access Management Designer Exam and thought of putting all the stuff that I am preparing in this and upcoming blog posts. I am dividing this into multiple blog posts (including this) with the below topics and its subtopics as per the certification guide and its weight
  • Identity Management Concepts – 28%
  • Accepting 3RD Party Identity in Salesforce – 22%
    • Describe the components of an identity management solution where Salesforce is accepting identity from a 3rd party.
    • Given a scenario, recommend the appropriate authentication mechanism when Salesforce needs to accept 3rd Party Identity (Enterprise Directory, Social, Community, etc.)
    • Given a scenario, recommend the appropriate method of SAML initiation to fulfill the requirements (SP-init, IdP-init.)
    • Describe the components of a Delegated Authentication solution.
    • Describe the risks of implementing delegated authentication.
  • Salesforce as an Identity Provider – 23%
    • Given a scenario, determine the most appropriate flow type to recommend when implementing an OAuth solution where Salesforce is providing identity to a 3rd party (E.g. User Agent, Web Server, JWT, etc.)
    • Describe the various implementation concepts of OAuth (E.g. scopes, secrets, tokens, refresh tokens, token expiration, token revocation, etc.)
    • Describe the role(s) Connected Apps play when Salesforce needs to provide identity to a third party system.
    • Given a scenario, recommend the Salesforce technologies that should be used to provide identity to the 3rd party system. (Canvas, Connected Apps, App Launcher, etc.).
  • Access Management Best Practices – 15%
    • Describe the risks that Two-Factor Authentication mechanisms aim to mitigate.
    • Given a scenario, determine the most appropriate Two-Factor Authentication mechanism for an identity solution.
    • Given a scenario, identify the risks and mitigation strategies that session security and Two-Factor Authentication enable (E.g. High Assurance Sessions, 2FA, etc.).
  • Salesforce Identity – 7%
    • Given a scenario, recommend the most appropriate Salesforce license type(s) to support the identity requirements.
    • Describe the role(s) Identity Connect plays in an Identity Management solution.
  • Community (Partners and Customers) – 5%
    • Describe the capabilities for customizing the registration experience for external communities (E.g. Branding options, self-registration, communications, etc.).

My Post will be containing a detailed explanation of each subtopic within each topic and I will be linking some trailhead modules & some reference links where ever possible. Please comment if you find anything wrong in the post which gives me an opportunity to correct myself.


Leave a Reply

Your email address will not be published. Required fields are marked *