CompTIA Cloud+ (CV0-002) — Question 144

Recent feedback from an employee engagement survey stated that users are frustrated with multiple logins to different SaaS providers, and the cloud engineering teams is directed to address this issue and implement a solution. The security policy states that users must access the SaaS from approved IP addresses.
Which of the following is the BEST and most efficient solution to deploy?

Answer options

• A. Deploy an IPSec tunnel to each SaaS provider and enable biometric login.
• B. Deploy a smart card login and change passwords to each SaaS vendor every 30 days.
• C. Deploy a CASB solution and whitelist the approved SaaS applications.
• D. Deploy SSO and enforce VPN access to the corporate domain.

Correct answer: D

Explanation

The correct answer is D because deploying Single Sign-On (SSO) allows users to access multiple SaaS applications with a single set of credentials, greatly improving user experience. Enforcing VPN access ensures that users can only log in from approved IP addresses, maintaining security. Other options either complicate the login process or do not effectively address the multiple login issue.