Google ChromeOS Administrator — Question 16

You want users to sign in to ChromeOS devices via SAML Single Sign-On and be able to access websites and cloud services that rely on the same identity provider without having to re-enter credentials. How should you configure SAML?

Answer options

• A. Enable SAML identity provider-initiated login for Google authentication
• B. Enable SAML-based Single Sign-On for ChromeOS devices and set the Single Sign-On cookie behavior to enable transfer of SAML SSO cookies into user sessions during login
• C. Enable SAML-based Single Sign-On for each application via Chrome App Management
• D. Use Chrome App Builder to enable SSO for application and force-install the application using ChromeOS user policies

Correct answer: B

Explanation

Option B is correct because it specifically addresses the need to enable SAML-based Single Sign-On for ChromeOS devices and ensures the transfer of SSO cookies, allowing seamless access. Option A does not provide the necessary configuration for ChromeOS devices, while option C focuses on individual applications rather than device-wide settings. Option D suggests an alternative method that doesn't streamline the login process across services as effectively as option B.