ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam SY0-501 All Questions

View all questions & answers for the SY0-501 exam
Go to Exam

Exam SY0-501 topic 1 question 81 discussion

Actual exam question from CompTIA's SY0-501
Question #: 81
Topic #: 1
[All SY0-501 Questions]

A company has three divisions, each with its own networks and services. The company decides to make its secure web portal accessible to all employees utilizing their existing usernames and passwords. The security administrator has elected to use SAML to support authentication. In this scenario, which of the following will occur when users try to authenticate to the portal? (Choose two.)

  • A. The portal will function as a service provider and request an authentication assertion.
  • B. The portal will function as an identity provider and issue an authentication assertion.
  • C. The portal will request an authentication ticket from each network that is transitively trusted.
  • D. The back-end networks will function as an identity provider and issue an authentication assertion.
  • E. The back-end networks will request authentication tickets from the portal, which will act as the third-party service provider authentication store.
  • F. The back-end networks will verify the assertion token issued by the portal functioning as the identity provider.
Show Suggested Answer Hide Answer
Suggested Answer: CD 🗳️
by madaraamaterasu at May 6, 2021, 3:40 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
SH_
Highly Voted 3 years, 11 months ago
I think the correct options are A and D. The portal (or application/service) is the service provider which users want to access while the back-end networks (with their own [identity] services) will function as identity providers.
upvoted 6 times
...
slackbot
Most Recent 5 months, 2 weeks ago
Selected Answer: AD
Kerberos is based on tickets, SAML is based on assertion
upvoted 1 times
...
CyberDog
3 years, 9 months ago
Should be A, and B
upvoted 1 times
...
monkeyyyyy
3 years, 11 months ago
I think it's probably AD. According to the Get Certified Get Ahead, SAML defines 3 roles: - Service provider. An SP is an entity that provides services to principals. For example, a service provider could host one or more websites accessible through a web-based portal. When a principal tries to access a resource, the SP redirects the principal to obtain an identity first Therefore, the portal is very likely to be the Service provider that sends the request to the Identity provider -> A redirects the principal to obtain an identity first = request The other two roles are - Identity provider. An Idp creates, maintains, and manages identity info for principals - Principal. This typically a user. The user logs on once. If necessary, the principal requests an identity from the identify provider
upvoted 3 times
...
EVE12
3 years, 11 months ago
SAML stands for Security Assertion Markup Language. It is an XML-based open-standard for transferring identity data between two parties: an identity provider (IdP) and a service provider (SP). • Identity Provider - Performs authentication and passes the user's identity and authorization level to the service provider. • Service Provider - Trusts the identity provider and authorizes the given user to access the requested resource. A and D
upvoted 4 times
...
madaraamaterasu
4 years ago
Should be D and A.
upvoted 4 times
SecPro
3 years, 12 months ago
I agree.
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago