CompTIA Security Exam Practice Questions Sample SY0 501 Q378

A web developer improves client access to the company’s REST API. Authentication needs to be tokenized but not expose the client’s password.
Which of the following methods would BEST meet the developer’s requirements?

A. SAML
B. LDAP
C. OAuth
D. Shibboleth

Correct Answer: A