A security engineer is reviewing the logs from a SAML application that is configured to use MF A. During this review, the engineer notices a high volume of successful logins that did not require MFA from users who were traveling internationally. The application, which can be accessed without a VPN, has a policy that allows time-based tokens to be generated. Users who change locations should be required to reauthenticate but have been able to log in without doing so. Which of the following statements BEST explains the issue? B. OpenID is mandatory to make the MFA requirements work. C. An incorrect browser has been detected by the SAML application. D. The access device has a trusted certificate installed that is overwriting the session token. E. The user's IP address is changing between logins, but the application is not invalidating the token. Â Correct Answer: D This question is in SY0-601 exam For getting CompTIA Security+ certificate
Please login or Register to submit your answer