CompTIA CASP+ Practice Test

When integrating two different authentication systems, which method is the best way for Company A to incorporate Company B's users?

• A. Enable 802.1x on Company B's network devices
• B. Use a centralized database for all users
• C. Implement a federated identity system
• D. Set up a direct LDAP integration

The correct answer is: Enable 802.1x on Company B's network devices

When integrating two different authentication systems, implementing a federated identity system is the most effective approach for incorporating Company B's users. A federated identity system allows for the sharing of user identities across different domains or organizations, enabling single sign-on (SSO) capabilities and ensuring seamless access while maintaining the security and governance of user credentials. In this scenario, a federated identity setup can facilitate authentication without requiring Company A to manage Company B's user accounts directly. Each organization retains control over its user identities, while still allowing users from Company B to access resources within Company A's environment using their existing credentials. Enabling 802.1x on Company B's network devices primarily pertains to network access control and security rather than user authentication integration across systems. Using a centralized database for all users could lead to challenges in user data management, especially regarding updates, changes, or deletions that need to be consistently mirrored across both organizations. Setting up a direct LDAP integration might involve complexities related to directory synchronization and potential conflicts with existing authentication systems. Thus, a federated identity system is typically seen as the best practice for achieving interoperability between different authentication systems while preserving the autonomy of each company's user management policies.