CompTIA Security+ (SY0-701) — Question 335

An organization has recently decided to implement SSO. The requirements are to leverage access tokens and focus on application authorization rather than user authentication. Which of the following solutions would the engineering team most likely configure?

Answer options

• A. LDAP
• B. Federation
• C. SAML
• D. OAuth

Correct answer: D

Explanation

The correct answer is OAuth, as it is designed specifically for application authorization using access tokens. LDAP and SAML are more focused on user authentication and directory services, while Federation is a broader concept that may not directly address the access token requirement.