A company’s password and authentication policies prohibit the use of shared passwords and
transitive trust. Which of the following if implemented would violate company policy? (Select TWO)
A.
Discretionary access control
B.
Federation
C.
Single sign-on
D.
TOTP
E.
Two-factor authentication
Explanation:
Answer = B, C
Both SSO and Federation are pretty much the same with a slight difference. In using both a user is authenticated once and gets access to multiple applications. The difference is the Federation server knows the username and doesn’t need to remember the password for each application system. It simply passes a token to other systems saying “this user is user01@blabla.com” and because of the trust with the other application systems, the user gets accepted to login without re-login. SSO is when all the applications still require that a password be sent to login, but the software handles storing it and automatically retrieving it for the user and inputting it into the application for an automatic login.
0
0