Salesforce Certified Identity and Access Management Practice

Disable ads (and more) with a membership for a one time $4.99 payment

Prepare for the Salesforce Certified Identity and Access Management Exam with comprehensive quizzes, flashcards, and detailed explanations. Enhance your knowledge with practice questions and become proficient in Salesforce identity management concepts.

Practice this question and more.


How does Salesforce ensure security in OAuth tokens?

  1. Must be protected from interception (via Transport Layer Security: TLS)

  2. Have a longer lifetime than authorisation codes

  3. Are a type of OAuth token, known as the Session ID

  4. Are used to make authenticated requests FOR the user

The correct answer is: Must be protected from interception (via Transport Layer Security: TLS)

OAuth tokens must be protected from interception using Transport Layer Security (TLS) to ensure security. TLS encrypts the communication between the client and the server, preventing unauthorized access to the OAuth tokens. Option B, a longer lifetime for authorization codes, does not affect the security of the OAuth tokens. Option C is incorrect because session IDs are not a type of OAuth token. Option D is incorrect because OAuth tokens are used to make authenticated requests on behalf of the user, not for the user.