Citrix Access Control Administration — Question 26

Scenario: A Citrix Administrator needs to test a SAML authentication deployment to be used by internal users while accessing several externally hosted applications. During testing, the administrator notices that after successfully accessing any partner application, subsequent applications seem to launch without any explicit authentication request.
Which statement is true regarding the behavior described above?

Answer options

• A. It is expected if the Citrix ADC appliance is the common SAML identity provider (IdP) for all partners.
• B. It is expected due to SAML authentication successfully logging on to all internal applications.
• C. It is expected if all partner organizations use a common SAML service provider (SP).
• D. It indicates the SAML authentication has failed and the next available protocol was used.

Correct answer: A

Explanation

The correct answer is A because when the Citrix ADC appliance acts as a common SAML identity provider for all partner applications, it allows single sign-on functionality, meaning users do not need to authenticate again for subsequent applications. Option B is incorrect as it refers to internal applications, which are not the focus here. Option C is not right because the behavior described does not depend on a common SAML service provider among partner organizations. Option D is incorrect as it contradicts the successful initial authentication.