CISSP · Question #1439
A company needs to provide employee access to travel services, which are hosted by a third- party service provider, Employee experience is important, and when users are already authenticated, access t
The correct answer is A. Security Assertion Markup Language (SAML) access. The method that is used to share information and grant user access to the travel portal is Security Assertion Markup Language (SAML) access. SAML is a standard and protocol that enables the exchange of authentication and authorization information between different domains or enti
Question
A company needs to provide employee access to travel services, which are hosted by a third- party service provider, Employee experience is important, and when users are already authenticated, access to the travel portal is seamless. Which of the following methods is used to share information and grant user access to the travel portal?
Options
- ASecurity Assertion Markup Language (SAML) access
- BSingle sign-on (SSO) access
- COpen Authorization (OAuth) access
- DFederated access
How the community answered
(30 responses)- A90% (27)
- B3% (1)
- C7% (2)
Explanation
The method that is used to share information and grant user access to the travel portal is Security Assertion Markup Language (SAML) access. SAML is a standard and protocol that enables the exchange of authentication and authorization information between different domains or entities, such as a service provider (SP) and an identity provider (IdP). SAML access can provide a seamless user experience, as it allows the users to access multiple services or resources from different domains, using a single or federated identity, without having to reauthenticate or reauthorize each time. SAML access can also enhance the security and privacy of the user information, as it does not require the sharing or storing of the user credentials or attributes between the domains, but rather relies on the digital signatures and encryption of the SAML assertions or messages. SAML access is suitable for the scenario where a company needs to provide employee access to travel services, which are hosted by a third-party service provider, as it can enable the employees to access the travel portal, using their existing company identity, after they are already authenticated by the company domain.
Topics
Community Discussion
No community discussion yet for this question.