300-810 · Question #23
Drag and Drop Question Drag and drop the events for an on-premises Jabber SAML SSO flow from the left into the correct order on the right. Answer:
The correct answer is Service Provider Authorization request; SSO Mode Discovery; IDP Authentication; Service Provider Authentication. This question tests knowledge of the Cisco Jabber on-premises SAML Single Sign-On (SSO) authentication flow, specifically the sequential handshake between the Service Provider (SP), the SSO discovery mechanism, and the Identity Provider (IDP).
Question
Drag and Drop Question Drag and drop the events for an on-premises Jabber SAML SSO flow from the left into the correct order on the right. Answer:
Exhibit
Answer Area
Drag items
Correct arrangement
- Service Provider Authorization request
- SSO Mode Discovery
- IDP Authentication
- Service Provider Authentication
Explanation
This question tests knowledge of the Cisco Jabber on-premises SAML Single Sign-On (SSO) authentication flow, specifically the sequential handshake between the Service Provider (SP), the SSO discovery mechanism, and the Identity Provider (IDP).
Approach. The flow begins with a 'Service Provider Authorization request' - Jabber (acting as the SP) initiates the SSO process by sending an authorization request when a user attempts to log in. Next, 'SSO Mode Discovery' occurs, where the system determines that SSO is configured and identifies the correct IDP endpoint to redirect the user to. Then 'IDP Authentication' takes place - the Identity Provider (e.g., AD FS) challenges and verifies the user's credentials. Finally, 'Service Provider Authentication' completes the flow - the SP receives and validates the SAML assertion from the IDP and grants the authenticated session to Jabber. The distractor 'Service Provider Authorization' (without 'request') is a near-duplicate meant to test careful reading; it represents a vague label that does not map to a distinct step in the SAML flow.
Concept tested. On-premises Cisco Jabber SAML 2.0 SSO authentication flow - the sequential steps from SP-initiated authorization request through IDP discovery, IDP credential validation, and final SP session grant.
Reference. Cisco Collaboration System 12.x SRND - Jabber and SSO Integration; Cisco Unified Communications Manager Security Guide - SAML SSO Configuration
Topics
Community Discussion
No community discussion yet for this question.
