Crucial Exams

ISC2 Certified Cloud Security Professional (CCSP) Practice Question

Your organization is moving several internal web and mobile applications to different public clouds. Security policy requires that users continue to authenticate with the on-premises corporate directory while the applications receive short-lived, signed tokens in JSON format. The solution must work with standard browser redirects and avoid synchronizing passwords to each provider. Which approach BEST satisfies these requirements?

  • Insert RADIUS proxy servers between the corporate network and each cloud tenant

  • Configure Kerberos cross-realm trusts with every public cloud provider

  • Publish the on-premises LDAP directory over VPN links to the cloud applications

  • Implement an Identity Provider that supports OpenID Connect using the OAuth 2.0 authorization-code flow

ISC2 Certified Cloud Security Professional (CCSP)
Cloud Application Security
Your Score:
Settings & Objectives
Random Mixed
Questions are selected randomly from all chosen topics, with a preference for those you haven’t seen before. You may see several questions from the same objective or domain in a row.
Rotate by Objective
Questions cycle through each objective or domain in turn, helping you avoid long streaks of questions from the same area. You may see some repeat questions, but the distribution will be more balanced across topics.

Check or uncheck an objective to set which questions you will receive.

Wipe Score
Bash, the Crucial Exams Chat Bot
AI Bot