SY0-701 Exam QuestionsBrowse all questions from this exam
Go to Exam

SY0-701 Exam - Question 140

During the onboarding process, an employee needs to create a password for an intranet account. The password must include ten characters, numbers, and letters, and two special characters. Once the password is created, the company will grant the employee access to other company-owned websites based on the intranet profile. Which of the following access management concepts is the company most likely using to safeguard intranet accounts and grant access to multiple sites based on a user's intranet account? (Choose two.)

Show Answer
Correct Answer: ACF

The company is using both federation and open authentication to manage access to its intranet and related services. Federation allows users to sign on with a single account across multiple company-owned websites, providing seamless access. Open authentication (OAuth) supports single sign-on (SSO), which is implied in the scenario where one set of credentials grants access to various platforms. Password complexity and default password changes, while important security measures, do not address the access management aspect described in the question.

Discussion

5 comments
Sign in to comment
c80f5c5Options: AF
Jun 5, 2024

This one is tricky because federation and open auth are very similar. I think OAuth might be for third party applications (like signing into a game with your facebook account) and not multiple company owned platforms like the question asks

35f7aac
Jun 6, 2024

I guess what makes me thing OAuth is because OAuth supports SSO which is what I think is being hinted at here. I wish this question was worded better.

35f7aac
Jun 6, 2024

OK. I'm going to change to Federation because i just found this on Okta's site. "SAML is independent of OAuth, relying on an exchange of messages to authenticate in XML SAML format, as opposed to JWT. It is more commonly used to help enterprise users sign in to multiple applications using a single login."

35f7aacOptions: AF
Jun 1, 2024

Hmm. Why not F instead of A? Question says "other company-owned websites". I thought Federation applies more to independent organizations connecting together.

NoobusAureliusOptions: CF
Jul 19, 2024

I agree with NadirM_18 C and F makes sense because it only states Company owned websites, not company systems/apps.

Zach123654Options: AC
Jul 9, 2024

GPT!!!

NadirM_18Options: CF
Jul 11, 2024

Seems like this could be CF as this is within the same company.