Google Cloud Associate Cloud Engineer — Question 85

Your company has a single sign-on (SSO) identity provider that supports Security Assertion Markup Language (SAML) integration with service providers. Your company has users in Cloud Identity. You would like users to authenticate using your company's SSO provider. What should you do?

Answer options

• A. In Cloud Identity, set up SSO with Google as an identity provider to access custom SAML apps.
• B. In Cloud Identity, set up SSO with a third-party identity provider with Google as a service provider.
• C. Obtain OAuth 2.0 credentials, configure the user consent screen, and set up OAuth 2.0 for Mobile & Desktop Apps.
• D. Obtain OAuth 2.0 credentials, configure the user consent screen, and set up OAuth 2.0 for Web Server Applications.

Correct answer: B

Explanation

The correct answer is B because it allows for the integration of a third-party identity provider using SAML, which is what the company requires for SSO. Option A incorrectly suggests using Google as an identity provider, which doesn't meet the need for a custom SSO provider. Options C and D involve OAuth 2.0, which is not relevant to SAML integration.