2V0-622 · Question #34
Which VMware Single Sign-On component issues Security Assertion Markup Language (SAML) tokens?
The correct answer is A. VMware Security Token Service. The VMware Security Token Service (STS) is the SSO component that issues SAML tokens used to authenticate users and services across vSphere.
Question
Which VMware Single Sign-On component issues Security Assertion Markup Language (SAML) tokens?
Options
- AVMware Security Token Service
- BAdministration Server
- CVMware Directory Service
- DIdentity Management Service
How the community answered
(45 responses)- A91% (41)
- B2% (1)
- C2% (1)
- D4% (2)
Why each option
The VMware Security Token Service (STS) is the SSO component that issues SAML tokens used to authenticate users and services across vSphere.
The VMware Security Token Service (STS) is the dedicated component within vCenter Single Sign-On responsible for issuing SAML 2.0 tokens. After a principal authenticates, the STS generates a signed SAML assertion that other vSphere services accept as proof of identity, enabling single sign-on across the environment.
The Administration Server provides the management interface for configuring SSO but does not perform token issuance.
VMware Directory Service (vmdir) is an LDAP-compatible store that holds SSO configuration and user data but does not issue SAML tokens.
The Identity Management Service handles querying identity sources for user and group lookups but is not responsible for generating or issuing SAML tokens.
Concept tested: VMware SSO Security Token Service SAML token issuance
Source: https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.authentication.doc/GUID-AC1D04C7-D01E-494A-B3A4-563B58DBF37B.html
Topics
Community Discussion
No community discussion yet for this question.