The Palo Alto Networks Cloud Identity Engine (CIE) includes which service that supports Identity Providers (IdP)?
The Palo Alto Networks Cloud Identity Engine (CIE) includes which service that supports Identity Providers (IdP)?
The Palo Alto Networks Cloud Identity Engine (CIE) includes both Directory Sync and the Cloud Authentication Service. Directory Sync provides user information, while the Cloud Authentication Service authenticates users. This collective service supports Identity Providers using SAML 2.0, which is a widely used standard for SSO and identity federation. Thus, the correct answer is Directory Sync and Cloud Authentication Service that support IdP using SAML 2.0.
A is the correct answer The Cloud Identity Engine consists of two components: Directory Sync, which provides user information, and the Cloud Authentication Service, which authenticates users. For a more comprehensive identity solution, Palo Alto Networks recommends using both components, but you can configure the components independently.
Agree with zwoldesilassie, see: https://docs.paloaltonetworks.com/pan-os/10-1/pan-os-new-features/identity-features/cloud-identity-engine
Answer is A
A, Agree, The Cloud Authentication Service uses a cloud-based service to provide user authentication using SAML 2.0-based Identity Providers. No mention of OAuth2