CompTIA Security+ (SY0-601) — Question 61

A company wants to improve end users' experiences when they log in to a trusted partner website. The company does not want the users to be issued separate credentials for the partner website. Which of the following should be implemented to allow users to authenticate using their own credentials to log in to the trusted partner's website?

Answer options

• A. Directory service
• B. AAA server
• C. Federation
• D. Multifactor authentication

Correct answer: C

Explanation

Federation allows users to authenticate across different domains using a single set of credentials, which aligns with the company's goal of not issuing separate credentials. The other options, such as Directory service and AAA server, do not provide the same cross-domain authentication capability, while Multifactor authentication adds an additional security layer but does not solve the issue of managing separate credentials.