An organization is implementing a new identity and access management architecture with the following

An organization is implementing a new identity and access management architecture with the following objectives:

• Supporting MFA against on-premises infrastructure
• Improving the user experience by integrating with SaaS applications
• Applying risk-based policies based on location
• Performing just-in-time provisioning

Which of the following authentication protocols should the organization implement to support these requirements?

A. Kerberos and TACACS

B. SAML and RADIUS

C. OAuth and OpenID

D. OTP and 802.1X

Reference: https://docs.microsoft.com/en-us/azure/active-directory/manage-apps/migrate-application-authentication-to-azure-active-directory