CIAM-Key Terms and Concepts

Question 1

Term used to generalize and reference multiple entities which access a system such as employees, guest, application users, and external users such as customers, contractors and vendors.

A) Access Administrator

B) Identity Management

C) User

D) Federation

Answer 1

C

Question 2

A resource or system that provides a generic service to the user in a federated system. To users, a service provider is the same thing as the application they are trying to use.

A) Federation

B) Identity Provider (IdP)

C) Identity Store

D) Service Provider (SP)

Answer 2

D

Question 3

A person who assigns roles, group memberships, and/or other attributes to a user.

A) User

B) Access Administrator

C) Provisioning

D) Access Management

Answer 3

B

Question 4

Underlying information associated with users and stored across a variety of technologies, including databases, LDAP, Active Directory, text files, etc.

A) Identity Store

B) Identity Provider (IdP)

C) Identity Management (IdM)

D) Service Provider (SP)

Answer 4

A

Question 5

A system that validates the identity of a user in a federated system. The Service Provider (or SP) users the IdP to get the identity of the current user.

A) Service Provider (SP)

B) Identity Provider (IdP)

C) Identity Management (IdM)

D) Directory Service

Answer 5

B

Question 6

The processes and solution that provide for the creation and management of user information also known as IdM.

A) Identity Management

B) Identity Provider

C) User

D) Governance

Answer 6

A

Question 7

Processes, tools and people which allow organizations to manage use identities and their access while meeting compliance and manage risks.

A) Enforcement

B) Governance

C) Identity Management

D) Entitlements

Answer 7

B

Question 8

This is a technical implementation that enables identity information to be developed and shared among several entities and across trusted domains.

A) Identity Management

B) Service Provider

C) Access Management

D) Federation

Answer 8

D

Question 9

The processes associated with a user’s login across a realm of applications or information repositories. It is important to note that IAM services will authorize user access to protected resources, but will delegate the authorization decisions to the applications themselves.

A) Credential

B) Access Management

C) Single Sign-On

D) Authentication

Answer 9

B

Question 10

The process of validation that people or entities are who they say they are. It is commonly referred to as “logging in.”

A) Authentication

B) Authorization

C) Credentials

D) Single Sign-On

Answer 10

A

Question 11

The process of determining if a user has the right to access a service or perform an action.

A) Authentication

B) Authorization

C) Single Sign-On

D) Credentials

Answer 11

B

Question 12

A central authentication protocol that allows users to log-on once and access all systems and data for which they are authorized.

A) Authorization

B) Single Sign-On

C) Authentication

D) Credentials

Answer 12

B

Question 13

Item such as username/password combination - used by a person or entity to prove him/her/itself to a system.

A) Credentials

B) Single Sign-On

C) Authentication

D) Authorization

Answer 13

A

Question 14

The software system that stores, organizes and provides access to information in a directory for entities such as people, groups, devices, resources, etc.

A) Governance

B) Identity Provider (IdP)

C) Directory Service

D) Service Provider (SP)

Answer 14

C

Question 15

Refers to authentication, authorization and logging of identities as they are used within the organization’s IT systems. Carrying-out of access rights primarily occurs through automated processes or mechanisms.

Answer 15

Enforcement

Question 16

Refers to an identity’s creation, change, termination, validation, approval, propagation and communication.

Answer 16

Provisioning

Question 17

Refers to ongoing companywide activities. It includes the establishment of an IAM strategy; administration of IAM policy statement changes; establishment of identity and password parameters; management of manual or automated IAM systems and processes; and periodic monitoring, auditing, reconciliation, and reporting of IAM systems.

Answer 17

Identity Management

Question 18

Is the collection of access rights to perform transactional functions. Note: The term _________ is used occasionally and synonymously with access rights.

Answer 18

entitlements

Question 19

Is the information representing the rights that the identity is granted.

_____ rights can be granted to allow users to perform transactional functions at various levels. Some examples of transactional functions are copy, transfer, add, change, delete, review and approve.

Answer 19

Access

Question 20

Is compromised of unique elements that describe a person or machine. An identity is recognized by a system in many ways included with something the user knows, such as a password or personal identification number (PIN); something the user has, such as an ID card, key fob, or a badge; and something the user is, such as a fingerprint or retinal pattern; or any combination of these elements.

Answer 20

Identity