CCSP Question #45: Real Exam Question with Answer & Explanation

Question

What is used with a single sign-on system for authentication after the identity provider has successfully authenticated a user?

Options

• AToken
• BKey
• CXML
• DSAML

Explanation

After an identity provider authenticates a user in a single sign-on system, a token is issued to the user's client, which is then presented to service providers for authorization.

Common mistakes.

• B. A key (like a cryptographic key) is used for encryption, decryption, or digital signatures, but it is not the primary mechanism exchanged after authentication to grant access in an SSO flow; a token serves this purpose.
• C. XML (Extensible Markup Language) is a markup language used for data formatting, and while SAML assertions (which are tokens) are often formatted in XML, XML itself is not the item used for authentication after IdP successful authentication.
• D. SAML (Security Assertion Markup Language) is an XML-based standard for exchanging authentication and authorization data between an IdP and an SP, but a SAML assertion (which is a type of token) is the specific item passed, not the entire SAML protocol itself.

Concept tested. SSO authentication mechanisms (tokens)

Reference. https://learn.microsoft.com/en-us/azure/active-directory/develop/security-tokens

No community discussion yet for this question.