Which two of the following steps are required to create a Pega Web Mashup?

Creating a Pega Web Mashup involves a few critical steps to ensure that the integration works properly within another web application. One of the essential steps in this process is to generate the mashup code. This step is crucial because the mashup code serves as the bridge that connects your Pega application with the external web application. It includes the necessary configuration and scripts that allow for seamless interaction, displaying Pega UI components within the other application, and handling data exchange between them.

In addition to this, setting up user authentication for the mashup is also a vital step. This ensures that only authorized users can access the mashup, maintaining security and access control. User authentication can involve various methods such as OAuth, SAML, or others depending on the requirements of the integration and the security standards of the applications involved.

On the other hand, while configuring a list of approved sites for site origin and defining user roles for accessing the mashup are important aspects of deployment security and access management, they are not fundamental steps in the actual creation process of a mashup. Proper authentication and generating the appropriate code are primary requirements to ensure that the mashup functions as intended.