A security analyst is working on a project team responsible for the integration of an enterprise SSO solution. The SSO solution requires the use of an open standard
for the exchange of authentication and authorization across numerous web based applications. Which of the following solutions is most appropriate for the analyst
to recommend in this scenario?
A.
SAML
B.
XTACACS
C.
RADIUS
D.
TACACS+
E.
Secure LDAP
NOTE Web-based SSO can be problematic due to disparate proprietary technologies.
To help alleviate this problem, Security Assertion Markup Language
(SAML) and the OpenID protocol were developed. These specify separate roles
for the user, the service provider, and the identity provider.
0
0