CompTIA CASP+ (CAS-003) — Question 288

The Chief Information Officer (CIO) wants to increase security and accessibility among the organization's cloud SaaS applications. The applications are configured to use passwords, and two-factor authentication is not provided natively.
Which of the following would BEST address the CIO's concerns?

Answer options

• A. Procure a password manager for the employees to use with the cloud applications.
• B. Create a VPN tunnel between the on-premises environment and the cloud providers.
• C. Deploy applications internally and migrate away from SaaS applications.
• D. Implement an IdP that supports SAML and time-based, one-time passwords.

Correct answer: D

Explanation

The correct answer is D because implementing an IdP that supports SAML and time-based, one-time passwords provides a robust form of two-factor authentication, significantly enhancing security. Option A, while helpful for password management, does not address two-factor authentication. Option B does not enhance security for cloud applications but rather connects environments. Option C would remove the benefits of SaaS, which is contrary to enhancing accessibility.