Citrix Access Control Administration — Question 119

Which statement correctly describes a feature of SAML authentication?

Answer options

• A. SAML authentication performs incremental directory database replication between partners.
• B. SAML can be configured in SAML identity provider (IdP) or SAML service provider (SP) roles on the same Citrix ADC appliance.
• C. Citrix ADC configured with the SAML service provider (SP) role needs to have access to the directory server to validate user credentials.
• D. SAML authentication uses the common LDAP ports, reducing the required port numbers between authentication partners.
• E. Only encrypted user credentials are passed on the identity provider (IdP) and service provider (SP) roles of SAML.

Correct answer: B

Explanation

Option B is correct because SAML can indeed be configured for both IdP and SP roles on the same Citrix ADC appliance, allowing for flexibility in deployment. The other options are incorrect as they misrepresent SAML's functionality, such as requiring directory server access for SP roles or incorrectly stating the nature of data transmission and replication.