Time to check your knowledge! Answer the following questions to check your understanding of the concepts covered in this module. Don't worry; these don't count towards your exam grade at the end of the learning path.
Exercise
Match each SSO configuration requirement with the correct component or setting: SSO-group-based page access X.509 certificate configuration Ensuring that only members of the "HR Department" group in your identity provider can access a Tines Page for submitting employee onboarding requests. Allowing a tenant owner to regain access to Tines if the SSO certificate expires and authentication breaks. Automatically assigning new users who belong to the "Engineering" group in Okta to the "Product Development" team in Tines with editor permissions when they first sign in. Verifying that Tines can trust the authentication responses coming from your SAML identity provider. Question
Your organization is planning to implement automated user provisioning in Tines. The IT director wants users to be created in Tines immediately when they're added to Azure AD, and for their access to be revoked instantly when they're removed, without waiting for them to sign in. The security team also requires that all user management happen exclusively through Azure AD to maintain a single source of truth. Which provisioning method should you implement?