CompTIA Security+ (SY0-601) — Question 663

A company is implementing a vendor's security tool in the cloud. The security director does not want to manage users and passwords specific to this tool but would rather utilize the company's standard user directory. Which of the following should the company implement?

Answer options

• A. 802.1X
• B. SAML
• C. RADIUS
• D. CHAP

Correct answer: B

Explanation

SAML (Security Assertion Markup Language) is designed for single sign-on and enables the use of a centralized user directory for authentication, making it the right choice here. The other options like 802.1X, RADIUS, and CHAP are more focused on network access control and authentication mechanisms, but do not specifically address the need for integration with an existing user directory as SAML does.