A company wants to streamline employees' access to dozens of internal and third-party web applications. Management requires that each employee authenticate only once per workday and then be able to open any authorized application without additional logins. Which solution should the Linux team implement to meet this requirement?
Distribute SSH keys to all users
Deploy Pluggable Authentication Modules (PAM) on all servers
The correct answer is implement a single sign-on (SSO) solution. SSO provides one central authentication event and then transparently passes a valid authentication token to each integrated application, eliminating repeated logins and reducing password fatigue. Distributing SSH keys secures remote shell access but does not federate web logins. Centralized user management (e.g., LDAP) stores accounts in one place but still requires separate authentications unless combined with SSO. Pluggable Authentication Modules (PAM) supply a framework for local authentication methods on Linux hosts and, by itself, does not deliver SSO across independent web applications.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is SSO and how does it work?
Open an interactive chat with Bash
What are the security benefits of implementing SSO?
Open an interactive chat with Bash
How does SSO differ from centralized user management?