Programming
Reader small image

You're reading from  Becoming a Salesforce Certified Technical Architect

Product typeBook
Published inFeb 2021
PublisherPackt
ISBN-139781800568754
Edition1st Edition
Tools
Salesforce CRM
Concepts
Software Architecture
Right arrow
Author (1)
Tameem Bahri
Tameem Bahri
author image
Tameem Bahri

Tameem Bahri is the Global Engineering Director for the CRM platform at A.P. Moller - Maersk and was formerly the European Chief Technology Officer for the Salesforce COE at Capgemini. He is an experienced technology specialist with a demonstrated history of working in the information technology and services industry with over 20 years of experience across Business Transformation, Digital Services, Innovation, Process design and redesign, Enterprise System Security, Identity and Access Management Strategy (IAM), and Enterprise Solution Architecture. Tameem Bahri is a Salesforce Certified Technical Architect (CTA) and has led CTA coaching activities for years for companies such as Accenture and Capgemini. He is also a public speaker who participated in multiple events, including Dreamforce, the Data Innovation Forum for Salesforce Architects, and the Tunisia Digital Summit 2021.
Read more about Tameem Bahri

Right arrow

Chapter 4: Core Architectural Concepts – Identity and Access Management

In this chapter, we will continue our efforts to understand the general architectural concepts that a Salesforce CTA should be familiar with. Identity and access management (IAM) is one of the most challenging topics that an architect needs to deal with. During a normal project, you might find yourself working with multiple IAM experts from different technological backgrounds. You need to be able to speak the same language as they do, understand their vision, and challenge their architectural design (if needed). As a Salesforce CTA, you are expected to step away from the standard platform knowledge to provide expert guidance in other related matters. Integration was a good example, IAM is another.

In this chapter, we're going to cover the following main topics:

  • Understanding the general concepts of IAM
  • Becoming familiar with the common IAM standards
  • Understanding the key authentication...

Understanding the general concepts of IAM

The IAM architecture is the activity of defining the processes, tools, monitoring mechanisms, and governance required in order to grant the enterprise's internal and external users access to the right digital assets in a well-governed and secure manner. The IAM architecture needs to ensure that users are granted the right level of access privileges based on internal and external requirements, such as enterprise policies or regulatory compliance.

The users included in an IAM architecture could be external (and in this case, we usually use the term customer identity and access management (CIAM)) or internal (where we simply use the term IAM).

The IAM strategy aims at creating a unified digital identity for the enterprise's customers and employees, along with a set of tools and processes to manage this identity and the access rights associated with it.

The IAM architecture is critical in today's connected enterprise applications...

Becoming familiar with the common IAM standards

IAM is a complex domain, and in order to ensure that its desired functionalities are delivered in a secure, consistent, and compliant way, several standards and protocols have been developed throughout time. As an architect, you need to become very familiar with these standards, understand how they operate and how they differ from one another, and exactly when to propose using any of them. Moreover, some of these standards have known and well-defined processes that describe precisely how to use the given standard to authenticate a user for a given use case. These processes are referred to as the authentication flows.

To understand the authentication and authorization concept and how standards are used therein, let's take a simple example. Assume you are traveling from the UK to the USA. When you attempt to cross the US border control, they would want to verify your identity. And let's assume that there is also a need to...

Understanding the key authentication flows

For each of the following flows, we will go through the flow's sequence diagram, cover the high-level details of each step, and provide potential use cases and key considerations. In order to draw and read a sequence diagram properly, you need to make yourself familiar with the standard symbols used. The following diagram lists the most common UML sequence diagram symbols:

Figure 4.5 – Common sequence diagram symbols

These flows are not specific to Salesforce; they are open standards and used across different technologies. You need to become very familiar with all of them. During the CTA review board, you will likely need to explain one of these flows. The best way to explain a flow is to draw its sequence diagram and walk the audience through it. It is strongly recommended that you practice drawing these diagrams over and over until you fully memorize them. Also, practice explaining them to an audience...

Summary

This was a long chapter, full of in-depth technical knowledge. We started by covering some general concepts regarding IAM. We learned the importance of crafting a well-designed IAM strategy and how that could significantly impact the end user experience as well as overall system security and compliance. We then became familiar with some key IAM terms and definitions, including identity, authentication, authorization, identity store, and others. We then moved on to discover some of the most common IAM standards, including SAML, OAuth2.0, OpenID Connect, and Kerberos, along with the different types of tokens they generate or use, such as the access token, refresh token, session token, and ID token.

That all set the scene to dive deeper into some of the common and standard authentication flows. We had an in-depth review of nine different flows, including SAML IDP-initiated, SAML SP-initiated, OAuth web server, OAuth JWT flows, and others.

That concludes this part of the...

lock icon
The rest of the chapter is locked
Previous Chapter
Chapter 6 of 21
Next Chapter
You have been reading a chapter from
Becoming a Salesforce Certified Technical Architect
Published in: Feb 2021Publisher: PacktISBN-13: 9781800568754
© 2021 Packt Publishing Limited All Rights Reserved
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Sign up now
undefined
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Start free trial
Renews at €14.99/month. Cancel anytime

Author (1)

author image
Tameem Bahri

Tameem Bahri is the Global Engineering Director for the CRM platform at A.P. Moller - Maersk and was formerly the European Chief Technology Officer for the Salesforce COE at Capgemini. He is an experienced technology specialist with a demonstrated history of working in the information technology and services industry with over 20 years of experience across Business Transformation, Digital Services, Innovation, Process design and redesign, Enterprise System Security, Identity and Access Management Strategy (IAM), and Enterprise Solution Architecture. Tameem Bahri is a Salesforce Certified Technical Architect (CTA) and has led CTA coaching activities for years for companies such as Accenture and Capgemini. He is also a public speaker who participated in multiple events, including Dreamforce, the Data Innovation Forum for Salesforce Architects, and the Tunisia Digital Summit 2021.
Read more about Tameem Bahri

Other recommended products

Related to this chapter

Salesforce for Beginners

Salesforce for Beginners

Learn Salesforce is a fully equipped comprehensive guide that will help you understand how to manage Sales, Marketing, Customer relationships, and administrator operations in your organization. This book will explain how these departments can utilize the Salesforce CRM to maximize the efficiency to achieve your business goals.

BookMay 2020472 pages
Mastering Salesforce CRM Administration

Mastering Salesforce CRM Administration

The Salesforce market is booming right now; employers have recognized the value that Salesforce experts add to an organization and want to hire them over their counterparts. This book will equip you with the tools you need to build a successful career in Salesforce administration and, moreover, it will help you crack the Advanced Admin Certification Examination.

BookMar 2017412 pages
Salesforce Platform App Builder Certification Guide

Salesforce Platform App Builder Certification Guide

The Salesforce Platform App Builder Certification Guide covers the essential topics and fundamental concepts that you need to master in order to design and build applications that support business processes within the Lightning Platform.

BookNov 2020412 pages
Salesforce Advanced Administrator Certification Guide

Salesforce Advanced Administrator Certification Guide

Salesforce Advanced Administrator Certification Guide is a complete resource that will help you gain the knowledge and master the skills required to earn the advanced administrator credentials. With plenty of questions and answers along with best practices, you will learn all the concepts asked in exams specially designed with this guide.

BookNov 2019672 pages
Salesforce CRM - The Definitive Admin Handbook

Salesforce CRM - The Definitive Admin Handbook

Salesforce CRM: The Definitive Admin Handbook is the complete guide to implementing Salesforce CRM. With this comprehensive guide to implementing Salesforce CRM, administrators of all levels can easily acquire deep knowledge of the platform. This book will show you how to get maximum benefit from this exciting product.

BookApr 2019782 pages
Salesforce Data Architecture and Management

Salesforce Data Architecture and Management

Salesforce helps to manage data effectively and securely while ensuring your Salesforce instance remains scalable. Whether it's a green field or a mature Salesforce org, this book will take you through helpful best practices and techniques to progress in your Salesforce career and avoid mistakes that can negatively impact your instance.

BookJul 2021376 pages
Hands-On Low-Code Application Development with Salesforce

Hands-On Low-Code Application Development with Salesforce

Hands-On Low-Code Application Development with Salesforce follows the “Clicks, not Code” mantra to develop business applications within the Salesforce environment. This book will help you increase your productivity by understanding the core concepts of metadata-driven development.

BookOct 2020608 pages
The Art of CRM

The Art of CRM

Max Fatourechi shares his decades of experience building successful CRM systems that make a real difference to business performance. Through clear processes, actionable advice, and informative case studies, The Art of CRM teaches you to design successful CRM systems for your clients

BookMay 2019360 pages

Personalised recommendations for you

Based on your interests and search pattern

C++ Programming for Linux Systems

C++ Programming for Linux Systems

This book covers the essential system programming tools and helps you explore the features of C++20. It emphasizes important details to maintain code quality and tackle everyday challenges of developing software for high performance, optimization, and more.

BookSep 2023288 pages
Expert C++

Expert C++

Discover advanced programming techniques, the latest features of C++17 and C++20, and best practices for memory management, debugging, testing, and large-scale application design with Expert C++. Ideal for experienced developers advancing to proficient programmers and building professional-grade C++ applications.

BookAug 2023604 pages
iOS 17 Programming for Beginners

iOS 17 Programming for Beginners

iOS 17 Programming for Beginners, Eighth Edition is your comprehensive guide to learning the art of iOS app development. Whether you dream of creating the next chart-topping app or simply want to enhance your programming skills, this book is your trusted companion on this exciting journey.

BookOct 2023604 pages4
Developer Career Masterplan

Developer Career Masterplan

Written by industry experts that have spent the last 20+ years helping developers grow their career path towards senior developer positions and beyond. This book provides a comprehensive guide, sharing examples and stories from their global careers. By the end, you’ll have the knowledge to create a clear career progression plan as a technical professional.

BookSep 2023310 pages
Refactoring with C#

Refactoring with C#

In Refactoring with C#, you’ll explore the process of safely refactoring modern .NET code using Visual Studio features, advanced unit tests, AI assistance, and custom Roslyn analyzers.

BookNov 2023434 pages
Python Real-World Projects

Python Real-World Projects

Amplify your developer journey by curating a dynamic project portfolio that outshines traditional resumes. Delve into the Python realm through immersive projects, mastering core concepts while constructing comprehensive modules and applications. From data acquisition prowess to impactful data visualization, Python Real-World Projects arms you with essential skills to beat the competition.

BookSep 2023478 pages5
The MVVM Pattern in .NET MAUI

The MVVM Pattern in .NET MAUI

The MVVM Pattern in .NET MAUI enables developers to master MVVM principles and effectively apply them to .NET MAUI. This book uses real-life examples and covers complex problems to help you successfully apply MVVM with .NET MAUI to confidently develop robust and high-performing cross-platform apps.

BookNov 2023386 pages
Extending Microsoft Business Central with Power Platform

Extending Microsoft Business Central with Power Platform

Extending Business Central with the Power Platform is a step-by-step guide for Business Central professionals to create solutions that automate business processes, explain complex workflow approvals, and integrate with hundreds of other systems, without traditional development. It’ll guide you in customizing Business Central with Power Platform.

BookAug 2023458 pages5
Extending Microsoft Business Central with Power Platform

Extending Microsoft Business Central with Power Platform

Extending Business Central with the Power Platform is a step-by-step guide for Business Central professionals to create solutions that automate business processes, explain complex workflow approvals, and integrate with hundreds of other systems, without traditional development. It’ll guide you in customizing Business Central with Power Platform.

BookAug 2023458 pages5
Quantum Computing Algorithms

Quantum Computing Algorithms

The book emphasizes intuitive ideas behind quantum algorithms in ways that other books don’t cover, striking a careful balance between no math and too much math. To get the most from this book, you should be comfortable with basic algebra and writing simple computer code. No prior understanding of quantum physics is needed to get started.

BookSep 2023342 pages
Python – Complete Python, Django, Data Science and ML Guide

Python – Complete Python, Django, Data Science and ML Guide

Unlock Python's full potential with this 50+ hour course! From programming to web and game development, data manipulation, and machine learning, gain the skills required to succeed in various Python-related careers. With practical tasks, hands-on experience, and a strong foundation in Python, you'll be ready to tackle real-world challenges and take advantage of the many opportunities this versatile language offers.

VideoNov 202350 hours 30 minutes5
Python – Complete Python, Django, Data Science and ML Guide

Python – Complete Python, Django, Data Science and ML Guide

Unlock Python's full potential with this 50+ hour course! From programming to web and game development, data manipulation, and machine learning, gain the skills required to succeed in various Python-related careers. With practical tasks, hands-on experience, and a strong foundation in Python, you'll be ready to tackle real-world challenges and take advantage of the many opportunities this versatile language offers.

VideoNov 202350 hours 30 minutes5