Answer-first summary for fast verification
Answer: Register the application as a password vaulted app and assign the service account credentials to it.
The correct solution is to register the application as a password vaulted app and assign the service account credentials to it. This approach allows the G Suite or Cloud Identity administrator to manage access to applications that do not support federation. The password vaulted apps service securely stores login credentials for applications and assigns these credentials to users through group association. Users can then sign in to the application through the user dashboard or directly from the application, leveraging Chrome or Firefox extensions/plugins for seamless access. This method ensures that the service account password is not shared among team members while providing them with the necessary access. Reference: [Google Cloud Identity Support](https://support.google.com/cloudidentity/answer/9178974?hl=en).
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
Your company has acquired a license for a third-party cloud-based document signing system for the procurement team. All procurement team members need to sign in using the same service account, but sharing the service account password is prohibited by your security team. What solution allows the team to log in as the service account without knowing the password?
A
Request the third-party provider to enable SAML for the application and configure it to use the service account credentials.
B
Request the third-party provider to enable OAuth 2.0 for the application and configure it to use the service account credentials.
C
Designate a single team member from procurement to access the document signing system with the service account credentials.
D
Register the application as a password vaulted app and assign the service account credentials to it.
No comments yet.