Explore the accurate description of the SP-initiated SSO SAML packet flow for a host without a SAML assertion.
Table of Contents
Question
Which option correctly describes an SP-initiated SSO SAML packet flow for a host without a SAML assertion?
A. Principal contacts service provider, service provider redirects principal to identity provider, after successful authentication identity provider redirects principal to service provider.
B. Principal contacts identity provider and is redirected to service provider, principal establishes connection with service provider, service provider validates authentication with identity provider.
C. Principal contacts identity provider and authenticates, identity provider relays principal to service provider after valid authentication.
D. Service provider contacts identity provider, identity provider validates principal for service provider, service provider establishes communication with principal.
Answer
C. Principal contacts identity provider and authenticates, identity provider relays principal to service provider after valid authentication.
Explanation
In this scenario, the principal (user) contacts the identity provider (IdP) to initiate the SSO process. The IdP authenticates the principal and then redirects them to the service provider (SP) with a SAML assertion containing the authentication information. The SP then validates the SAML assertion with the IdP to ensure the authentication was successful.
Fortinet NSE 6 – FortiAuthenticator 6.4 NSE6_FAC-6.4 certification exam practice question and answer (Q&A) dump with detail explanation and reference available free, helpful to pass the Fortinet NSE 6 – FortiAuthenticator 6.4 NSE6_FAC-6.4 exam and earn Fortinet NSE 6 – FortiAuthenticator 6.4 NSE6_FAC-6.4 certification.