CompTIA Security+ (SY0-501) — Question 633

A security engineer at a manufacturing company is implementing a third-party cloud application. Rather than creating users manually in the application, the engineer decides to use the SAML protocol. Which of the following is being used for this implementation?

Answer options

• A. The manufacturing company is the service provider, and the cloud company is the identity provider.
• B. The manufacturing company is the authorization provider, and the cloud company is the service provider.
• C. The manufacturing company is the identity provider, and the cloud company is the OAuth provider.
• D. The manufacturing company is the identity provider, and the cloud company is the service provider.
• E. The manufacturing company is the service provider, and the cloud company is the authorization provider.

Correct answer: A

Explanation

The correct answer is A because in a SAML implementation, the manufacturing company acts as the service provider that uses the identity provider (the cloud company) to authenticate users. The other options incorrectly assign roles, such as mixing up the identity provider and the service provider or using the term authorization provider, which is not relevant in this context.