ExamGecko
Search Search Login
Home Home / Fortinet / NSE6_FAC-6.4
Question list
Search
Search

List of questions

Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

Which two protocols are the default management access protocols for administrative access for FortiAuthenticator? (Choose two)
What are three key features of FortiAuthenticator? (Choose three)
Which statement about the guest portal policies is true?
Which statement about the assignment of permissions for sponsor and administrator accounts is true?
You have implemented two-factor authentication to enhance security to sensitive enterprise systems. How could you bypass the need for two-factor authentication for users accessing form specific secured networks?
Which three of the following can be used as SSO sources? (Choose three)
A device or user identity cannot be established transparently, such as with non-domain BYOD devices, and allow users to create their own credentialis. In this case, which user idendity discovery method can Fortiauthenticator use?
What capability does the inbound proxy setting provide?
Which of the following is an OATH-based standard to generate event-based, one-time password tokens?
Which option correctly describes an SP-initiated SSO SAML packet flow for a host without a SAML assertion?

Question 10 - NSE6_FAC-6.4 discussion

Report
Export

Which option correctly describes an SP-initiated SSO SAML packet flow for a host without a SAML assertion?

A.
Service provider contacts idendity provider, idendity provider validates principal for service provider, service provider establishes communication with principal
Answers
A.
Service provider contacts idendity provider, idendity provider validates principal for service provider, service provider establishes communication with principal
B.
Principal contacts idendity provider and is redirected to service provider, principal establishes connection with service provider, service provider validates authentication with identify provider
Answers
B.
Principal contacts idendity provider and is redirected to service provider, principal establishes connection with service provider, service provider validates authentication with identify provider
C.
Principal contacts service provider, service provider redirects principal to idendity provider, after succesfull authentication identify provider redirects principal to service provider
Answers
C.
Principal contacts service provider, service provider redirects principal to idendity provider, after succesfull authentication identify provider redirects principal to service provider
D.
Principal contacts idendity provider and authenticates, identity provider relays principal to service provider after valid authentication
Answers
D.
Principal contacts idendity provider and authenticates, identity provider relays principal to service provider after valid authentication
Suggested answer: C

Explanation:

SP-initiated SSO SAML packet flow for a host without a SAML assertion is as follows:

Principal contacts service provider, requesting access to a protected resource.

Service provider redirects principal to identity provider, sending a SAML authentication request.

Principal authenticates with identity provider using their credentials.

After successful authentication, identity provider redirects principal back to service provider, sending a SAML response with a SAML assertion containing the principal's attributes.

Service provider validates the SAML response and assertion, and grants access to the principal.

Reference: https://docs.fortinet.com/document/fortiauthenticator/6.4.0/administrationguide/ 906179/saml-service-provider#sp-initiated-sso

Show Answer
asked 18/09/2024
ali ghoubali
35 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms