SAML (Security Assertion Markup Language):

1)What is SAML?

SAML (Security Assertion Markup Language) is a standard for exchanging authentication and
authorization data between parties.

2)Explain the roles of Identity Provider (IdP) and Service Provider (SP) in SAML.

IdP manages user identities and provides authentication, while SP consumes this information to
authorize user access.

3)How does SAML achieve Single Sign-On (SSO)?

SAML enables SSO by allowing a user to authenticate once and access multiple systems without re-
authentication.

OAuth (Open Authorization):

1)What is OAuth?

OAuth is an open standard for secure authorization that allows third-party applications to access
resources on a user’s behalf.

2)Differentiate between OAuth 1.0a and OAuth 2.0.

OAuth 1.0a requires cryptographic signatures, while OAuth 2.0 relies on SSL/TLS for security and
simplifies the authorization process.

3)Explain the roles of Resource Owner, Client, Resource Server, and Authorization Server in OAuth.

Resource Owner owns the resource, Client requests access, Resource Server hosts the resource, and
Authorization Server authenticates and grants access tokens.

OpenID Connect:
1)What is OpenID Connect?

OpenID Connect is an authentication layer on top of OAuth 2.0, providing identity information about
the end-user in JSON format.

2)How does OpenID Connect enhance authentication over OAuth 2.0?

OpenID Connect adds an identity layer to OAuth 2.0, providing standardized mechanisms for user
authentication and conveying identity information.

3)Explain the difference between ID Token and Access Token in OpenID Connect.

ID Token contains user identity information, while Access Token grants access to protected resources.

LDAP (Lightweight Directory Access Protocol):

1)What is LDAP?
LDAP is a protocol used to access and manage directory information services, often for centralized
user authentication.

2)How does LDAP facilitate user authentication?

LDAP stores and retrieves user credentials and attributes, allowing systems to authenticate users
against a centralized directory.

3What is the difference between LDAP and Active Directory?

LDAP is a protocol for accessing directory services, while Active Directory is a directory service that
uses LDAP.

Single Sign-On (SSO):

1)What is Single Sign-On (SSO)?

SSO is a session/user authentication process that enables a user to log in once and access multiple
systems without re-authentication.

2)Explain the benefits and challenges of implementing SSO.

Benefits include user convenience and improved security. Challenges may involve complex
integrations and potential security risks.