ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam CV0-002 All Questions

View all questions & answers for the CV0-002 exam
Go to Exam

Exam CV0-002 topic 1 question 137 discussion

Actual exam question from CompTIA's CV0-002
Question #: 137
Topic #: 1
[All CV0-002 Questions]

A CASB provides the application proxy and web application firewall to a large retailer. All access to the retailer cloud application must originate from the CASB- designated IP addresses. The CASB has known geolocations with known IP addresses. Suddenly, all customers are not able to access the retailer cloud applications. Which of the following is MOST likely the reason for the issue?

  • A. Additional CASB IP addresses were added to the authorized pool
  • B. All of the CASB's European datacenters are down
  • C. There was federation and SSO misconfiguration
  • D. The CASB's SSL/TLS certificate expired
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by neil001 at March 18, 2020, 1:42 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
xparta300
4 years ago
they handle the network part of the cloud retailer and it doesn't specify if they handle the user integration. They are using an application proxy that most likely has a custom URL domain. Going with D. https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/application-proxy-configure-custom-domain
upvoted 4 times
...
neil001
5 years, 1 month ago
Answer is C "Single sign-on, based on identity federation, also ensures that users can be provisioned to cloud services on demand the first time they access the cloud app. “The cloud access security broker helps ensure that all cloud apps leverage a single identity storage by authenticating users directly against your corporate directory,” https://www.nexusgroup.com/what-is-a-cloud-access-security-broker-and-why-use-one/
upvoted 2 times
Adonist
4 years, 9 months ago
That makes sense but if it was working and stopped working out of nowhere I'm not sure it would be a SSO misconfiguration as it was already configured and working. I thinks the expired cert makes more sense. I'd go for D.
upvoted 10 times
...
KNOPPER
4 years, 5 months ago
Customers using SSO? going with D
upvoted 5 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago