CompTIA
CV0-003 · Question #245
CV0-003 Question #245: Real Exam Question with Answer & Explanation
The correct answer is A: SAML. SAML (Security Assertion Markup Language) is the industry-standard protocol specifically designed to enable identity federation and single sign-on across different organizations and SaaS providers.
Security
Question
Several SaaS providers support identity federation for authentication. Which of the following would BEST assist in enabling federation?
Options
- ASAML
- BNTLM
- CMFA
- DPKI
Explanation
SAML (Security Assertion Markup Language) is the industry-standard protocol specifically designed to enable identity federation and single sign-on across different organizations and SaaS providers.
Common mistakes.
- B. NTLM (NT LAN Manager) is a legacy Windows challenge-response authentication protocol designed for local network authentication, and it does not support cross-domain or cross-organization identity federation.
- C. MFA (Multi-Factor Authentication) is an additional verification layer that can be layered on top of a federated identity solution but does not itself enable federation or the trust relationships between identity and service providers.
- D. PKI (Public Key Infrastructure) provides the certificate-based cryptographic underpinning that can be used within SAML to sign assertions, but PKI alone does not define the federation protocol, assertion format, or SP/IdP trust model needed for federation.
Concept tested. SAML-based identity federation for SaaS SSO
Reference. https://learn.microsoft.com/en-us/azure/active-directory/fundamentals/auth-saml
Topics
#SAML#identity federation#SSO#authentication
Community Discussion
No community discussion yet for this question.