CompTIA Security+ (SY0-701) — Question 602

An organization is adopting cloud services at a rapid pace and now has multiple SaaS applications in use. Each application has a separate log-in, so the security team wants to reduce the number of credentials each employee must maintain. Which of the following is the first step the security team should take?

Answer options

• A. Enable SAML.
• B. Create OAuth tokens.
• C. Use password vaulting.
• D. Select an IdP.

Correct answer: D

Explanation

The correct answer is D, as selecting an Identity Provider (IdP) is a fundamental step in centralizing authentication for multiple applications. This will enable Single Sign-On (SSO) capabilities, allowing employees to access all SaaS applications with a single set of credentials. The other options, while relevant to authentication, are secondary steps that come after an IdP has been chosen.