312-50V13 · Question #354
Which access control mechanism allows for multiple systems to use a central authentication server (CAS) that permits users to authenticate once and gain access to multiple systems?
The correct answer is C. Single sign-on. Single sign-on (SSO) is the access control mechanism that enables users to authenticate once with a central server and gain access to multiple systems without re-authenticating.
Question
Options
- ARole Based Access Control (RBAC)
- BDiscretionary Access Control (DAC)
- CSingle sign-on
- DWindows authentication
How the community answered
(27 responses)- A4% (1)
- C93% (25)
- D4% (1)
Why each option
Single sign-on (SSO) is the access control mechanism that enables users to authenticate once with a central server and gain access to multiple systems without re-authenticating.
Role-Based Access Control (RBAC) is an authorization model that grants or restricts system access to users based on their assigned roles, rather than facilitating a single authentication for multiple distinct systems.
Discretionary Access Control (DAC) is an authorization model where the resource owner determines who can access the resource and what permissions they have, which is different from a unified authentication mechanism across multiple systems.
Single sign-on (SSO) is an authentication scheme that allows a user to log in with a single set of credentials and access multiple applications or systems that trust the central authentication server (CAS). This streamlines the user experience and improves security by reducing the number of passwords users need to manage.
Windows authentication is a specific implementation of authentication used within Microsoft environments (e.g., Active Directory), which can support SSO, but it is not the general conceptual mechanism of single sign-on itself for disparate systems.
Concept tested: Single Sign-On (SSO) mechanism
Source: https://learn.microsoft.com/en-us/azure/active-directory/develop/single-sign-on-what-is
Topics
Community Discussion
No community discussion yet for this question.