Exam SY0-701 All QuestionsBrowse all questions from this exam
Go to Exam
Question 140

During the onboarding process, an employee needs to create a password for an intranet account. The password must include ten characters, numbers, and letters, and two special characters. Once the password is created, the company will grant the employee access to other company-owned websites based on the intranet profile. Which of the following access management concepts is the company most likely using to safeguard intranet accounts and grant access to multiple sites based on a user's intranet account? (Choose two.)

    Correct Answer: A, F

    The company is using both federation and open authentication to manage access to its intranet and related services. Federation allows users to sign on with a single account across multiple company-owned websites, providing seamless access. Open authentication (OAuth) supports single sign-on (SSO), which is implied in the scenario where one set of credentials grants access to various platforms. Password complexity and default password changes, while important security measures, do not address the access management aspect described in the question.

Discussion
c80f5c5Options: AF

This one is tricky because federation and open auth are very similar. I think OAuth might be for third party applications (like signing into a game with your facebook account) and not multiple company owned platforms like the question asks

35f7aac

I guess what makes me thing OAuth is because OAuth supports SSO which is what I think is being hinted at here. I wish this question was worded better.

35f7aac

OK. I'm going to change to Federation because i just found this on Okta's site. "SAML is independent of OAuth, relying on an exchange of messages to authenticate in XML SAML format, as opposed to JWT. It is more commonly used to help enterprise users sign in to multiple applications using a single login."

NoobusAureliusOptions: CF

I agree with NadirM_18 C and F makes sense because it only states Company owned websites, not company systems/apps.

35f7aacOptions: AF

Hmm. Why not F instead of A? Question says "other company-owned websites". I thought Federation applies more to independent organizations connecting together.

NadirM_18Options: CF

Seems like this could be CF as this is within the same company.

Zach123654Options: AC

GPT!!!