Implementing Cisco Collaboration Applications (CLICA) — Question 21

SAML SSO is enabled in Cisco Unified Communications Manager. What happens when a browser-based client attempts to access a protected resource on a service provider?

Answer options

• A. The browser follows the redirect and issues an HTTPS GET request to the IdP.
• B. The IdP checks for a valid browser session.
• C. The service provider generates a SAML authentication request.
• D. The SAML request is maintained as a query parameter in the GET request.

Correct answer: C

Explanation

The correct answer is C because when a browser-based client tries to access a protected resource, the service provider must generate a SAML authentication request to initiate the SSO process. Option A is incorrect as it describes a subsequent action rather than the initial step. Option B refers to the IdP's function after the request is made, and option D misstates how the SAML request is handled.