C2150-575 Free Dumps Study Materials
Question 5: A client has installed IBM Tivoli Federated Identity Manager V6.2.2 (TFIM) and is establishing a SAML
1.1 Single Sign-On (SSO) configuration with a service provider (SP). The client wants to provide
SP-initiated Federated SSO. How can this be accomplished?
A. A link or redirect to the SP login endpoint with the parameters SP_PROVIDER_ID and target can be
used to initiate the protocol at the SP. The SP will then redirect the user to the corresponding identity
provider (IdP) login endpoint.
B. A link or redirect to the SP login endpoint with the parameters IDP_PROVIDER_ID and target can be
used to initiate the protocol at the SP. The SP will then redirect the user to the corresponding IdP login
endpoint.
C. Because a SP-initiated sign-on is not supported in SAML 1.1, this can be simulated by using a link or
an HTTP 302 redirect to the IdP login endpoint with the query string parameters SP_PROVIDER_ID and
TARGET to initiate the protocol.
D. Because a SP-initiated sign-on is not supported in SAML 1.1, and only an HTTP POST to the IdP can
be used to initiate the protocol, the SP must generate an HTTP 200 response containing a form with the
SP_PROVIDER_ID and target values which is self-posted to the IdP login endpoint.
Correct Answer: C