How should you configure SAML?

You want users to sign in to ChromeOS devices via SAML Single Sign-On and be able to access websites and cloud services that rely on the same identity provider without having to re-enter credentials.

How should you configure SAML?
A . Enable SAML identity provider-initialed login for Google authentication
B . Enable SAML-based Single Sign-On for ChromeOS devices and set the Single Sign-On cookie
behavior to enable transfer of SAML SSO cookies into user sessions during login

C . Enable SAML-based Single Sign-On for each application via Chrome App Management
D . Use Chrome App Builder to enable SSO for application and force-install the application using ChromeOS user policies

Answer: B

Explanation:

To achieve seamless SSO between ChromeOS devices and other web services using the same identity provider, you need to configure SAML SSO in the Google Admin console: Enable SAML-based SSO for ChromeOS devices.

In the SSO settings, find the Single Sign-On cookie behavior and set it to "Enable transfer of SAML SSO cookies into user sessions during login." This allows the SAML authentication cookie to be passed between the ChromeOS login and other web services, eliminating the need for re-authentication.

Option A is incorrect because it relates to the initial login method, not cookie transfer for subsequent SSO.

Options C and D are incorrect because they involve application-specific SSO configurations, not the general SAML SSO setup for the device.

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments