Which approach should an architect recommend to allow external systems to upsert Salesforce records without knowing internal Salesforce IDs?