Question 7

Question

Which step is the first for web-based single sign-on login?

Accepted Answer

Request access to protected service.

Piya K. · Answer

D pretty sure. First move is always user asking for the protected resource, not the redirect step.

Avery F. · Answer

D tbh. Web SSO flows always kick off once the user tries to access a protected resource, not at the redirect step. If they asked from IdP's side, then B might work, but not here.

Taylor · Answer

D imo. Always starts when the user hits the protected resource. Redirects and authentication come after. Seen this in Cisco guides.

Nora O. · Answer

I thought it starts with B, since the user is usually sent to the IdP to authenticate before anything happens. But actually now that I think about it, if the initial step is always user action, then redirect (B) only happens after they try to access something. Really depends on whether you count hitting the protected site as part of the flow. So I went with B here-someone correct me if I’m missing something?

Quinn · Answer

I get why some are saying B, since the SSO protocol technically starts at the redirect to the IdP. But I think D is still right here, since web-based SSO always begins with the user requesting access to the protected service-the app/resource has to trigger the whole flow first. Cisco wording can be vague sometimes though. Anyone else see practice questions ask it this way?

Premium Access Includes

FLASH OFFER

avail 10% DISCOUNT on YOUR PURCHASE