nerdexam
(ISC)2

CISSP · Question #1439

A company needs to provide employee access to travel services, which are hosted by a third- party service provider, Employee experience is important, and when users are already authenticated, access t

The correct answer is A. Security Assertion Markup Language (SAML) access. The method that is used to share information and grant user access to the travel portal is Security Assertion Markup Language (SAML) access. SAML is a standard and protocol that enables the exchange of authentication and authorization information between different domains or enti

Submitted by carlos_mx· Mar 5, 2026Identity and Access Management

Question

A company needs to provide employee access to travel services, which are hosted by a third- party service provider, Employee experience is important, and when users are already authenticated, access to the travel portal is seamless. Which of the following methods is used to share information and grant user access to the travel portal?

Options

  • ASecurity Assertion Markup Language (SAML) access
  • BSingle sign-on (SSO) access
  • COpen Authorization (OAuth) access
  • DFederated access

How the community answered

(30 responses)
  • A
    90% (27)
  • B
    3% (1)
  • C
    7% (2)

Explanation

The method that is used to share information and grant user access to the travel portal is Security Assertion Markup Language (SAML) access. SAML is a standard and protocol that enables the exchange of authentication and authorization information between different domains or entities, such as a service provider (SP) and an identity provider (IdP). SAML access can provide a seamless user experience, as it allows the users to access multiple services or resources from different domains, using a single or federated identity, without having to reauthenticate or reauthorize each time. SAML access can also enhance the security and privacy of the user information, as it does not require the sharing or storing of the user credentials or attributes between the domains, but rather relies on the digital signatures and encryption of the SAML assertions or messages. SAML access is suitable for the scenario where a company needs to provide employee access to travel services, which are hosted by a third-party service provider, as it can enable the employees to access the travel portal, using their existing company identity, after they are already authenticated by the company domain.

Topics

#SAML#Federated identity#Single Sign-On (SSO)#Third-party access

Community Discussion

No community discussion yet for this question.

Full CISSP Practice