Salesforce Certified Identity and Access Management Designer — Question 18

Universal Containers (UC) uses middleware to integrate multiple systems with Salesforce. UC has a strict, new requirement that usernames and passwords cannot be stored in any UC system.
How can UC's middleware authenticate to Salesforce while adhering to this requirement?

Answer options

• A. Create a Connected App that supports the Refresh Token OAuth Flow.
• B. Create a Connected App that supports the JWT Bearer Token OAuth Flow.
• C. Create a Connected App that supports the User-Agent OAuth Flow.
• D. Create a Connected App that supports the Web Server OAuth Flow.

Correct answer: B

Explanation

The JWT Bearer Token OAuth Flow allows for server-to-server authentication without the need to store usernames and passwords, making it suitable for UC's strict requirement. Options A, C, and D all involve methods that may require storing sensitive credentials, which would violate UC's policy.