Which of the following services can be deployed via a cloud service or on-premises to integrate with Identity as a Service (IDaaS) as the authoritative source of user identities?
Directory is the source, SSO is a process. Directory can be an AD container or GC domain controller that holds the directory structure and hence can be an authoritative source!
ChatGPT
ChatGPT
The service that can be deployed via a cloud service or on-premises to integrate with Identity as a Service (IDaaS) as the authoritative source of user identities is:
B. Directory
A directory service, such as Active Directory or LDAP (Lightweight Directory Access Protocol), can be used as the authoritative source of user identities and integrated with IDaaS solutions, whether hosted in the cloud or on-premises. This allows for centralized identity management and authentication across various applications and services.
I know many Chatgpt answers are flawed but this one is correct based on my research. Active Directory integrates with IDaaS which can be a centralized source for Identity management and authentication.
According to the CISSP (Certified Information Systems Security Professional) perspective, the service that can be deployed via cloud service or on-premises to integrate with Identity as a Service (IDaaS) as the authoritative source of user identities is the Directory (option B). Directory services are used to store and manage user identity and access information, and can be integrated with IDaaS platforms to provide a centralized and consistent source of user identity information. Multi-factor authentication (MFA), user databases, and single sign-on (SSO) can also be deployed with IDaaS, but they do not typically serve as the authoritative source of user identities.
From CISSP Official Student Guide 6th Edition - SSO is where 'a user only has to sign in to a single authorization provider and they are then grated access to all resources they have privileges for...' Then there is a diagram where the request is from SSO to an d IAM system.
What is 'Directory' anyway - it doesnt say 'Active Directory'...
Also from the CISSP Official Study Guide pg 662 "Identity as a service, or identity and access as a service (IDaaS), is a third-party service that provides identity and access management. IDaaS effectively provides SSO for the cloud and is especially useful when internal clients access cloud-based software as a service (SaaS) applications. Google implements this with its motto of "One Google Account for everything Google." Users log into their Google account once, and it provides them access to multiple Google cloud-based applications without requiring users to log in again."
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
projtfer
Highly Voted 2 years, 1 month agojackdryan
1 year, 6 months agoDERCHEF2009
Highly Voted 2 years, 2 months agoSoleandheel
Most Recent 11 months, 3 weeks agoSoleandheel
11 months, 3 weeks agoDapengZhang
1 year ago74gjd_37
1 year, 2 months agoRVoigt
1 year, 10 months agoRVoigt
1 year, 8 months agorajkamal0
1 year, 11 months agoRollizo
2 years, 1 month agobrb77
2 years, 2 months agoBDSec
2 years, 2 months agoCww1
2 years, 2 months agogooftroop
2 years, 2 months ago