Given a scenario, determine the most appropriate flow type to recommend when implementing an OAuth solution where Salesforce is providing identity to a third party (for example, User Agent, Web Server, JWT, etc.)

Web Server Authentication Flow are for apps hosted on a secure servermust be used when the server must protect the secretuses the “Authorization Code” grant type, which is optimized for confidential clients and may request both access and refresh tokensStepsThe web server redirects the user to Salesforce to authenticate and authorize the server to access […]

Describe the role(s) an Identity Provider and Service Provider play in an access control solution

Identity Provider An identity provider is a trusted provider that lets use single sign-on (SSO) to access other websites. Salesforce can be enabled as a Identity Provider and multiple service providers can be defined to enable access to multiple applications using Single Sign On (SSO). Before enabling Salesforce as an identity provider set up a […]

Identity and Access Management Designer Certification

I am preparing for my Identity and Access Management Designer Exam and thought of putting all the stuff that I am preparing in this and upcoming blog posts. I am dividing this into multiple blog posts (including this) with the below topics and its subtopics as per the certification guide and its weight Identity Management […]