IBM Security Access Manager V9.0 Deployment — Question 26

A deployment professional has created a new SAML 2.0 Service Provider federation and added an Identity Provider partner.
What will be the next step to allow users to single sign-on to the service?

Answer options

• A. Configure trigger URL
• B. Upload a mapping rule
• C. Import Identity Provider metadata
• D. Create a certificate to sign SAML messages

Correct answer: D

Explanation

The correct answer is D, as creating a certificate to sign SAML messages is essential for ensuring the integrity and authenticity of the SAML assertions. Options A, B, and C do not directly contribute to the security requirements necessary for enabling single sign-on, which is why they are not the next steps after establishing the federation.