A company offers SaaS, maintaining all customers’ credentials and authenticating locally. Many large customers have requested the company offer some form of federation with their existing authentication infrastructures.
Which of the following would allow customers to manage authentication and authorizations from within their existing organizations?
A. Implement SAML so the company’s services may accept assertions from the customers’ authentication servers.
B. Provide customers with a constrained interface to manage only their users’ accounts in the company’s active directory server.
C. Provide a system for customers to replicate their users’ passwords from their authentication service to the company’s.
D. Use SOAP calls to support authentication between the company’s product and the customers’ authentication servers.