U.S. Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Zscaler ZTCA Exam - Topic 6 Question 12 Discussion

Third parties that can be integrated at the point of Verifying Identity and Context in the Zero Trust process include:
B) IdPs (Identity Providers) such as Okta and PingFederate, which are used for SSO (Single Sign-On).
A) Open-source SIEM tools such as OSSM and the ELK Stack.
C) Web scalers such as GCP, Azure, and AWS, where cloud workloads are typically hosted.
D) Data center providers such as Equinix, where customer hardware is typically hosted.

Zscaler ZTCA Exam - Topic 6 Question 12 Discussion

Actual exam question for Zscaler's ZTCA exam
Question #: 12
Topic #: 6
[All ZTCA Questions]

Third parties that can be integrated at the point of Verifying Identity and Context in the Zero Trust process include:

Show Suggested Answer Hide Answer
Suggested Answer: B

The correct answer is B. In Zscaler's Zero Trust architecture, the Verify Identity and Context stage relies on identity systems that can authenticate users and provide policy-relevant attributes. The ZIA authentication architecture explicitly states that Zscaler partners with leading Identity Providers (IdPs) such as Azure Active Directory, Okta, and PingFederate, and that responses from the IdP can include the user's identity, department, and group membership. Those attributes are then used to decide which policies apply.

The ZPA architecture reinforces the same model by stating that SAML and SCIM attributes such as group membership and role are used in access policy rules, and that additional access context can be provided by the SAML Identity Provider. This makes IdP integration a direct part of verification and context evaluation in the Zero Trust process.

The other options are not the best fit for this stage. SIEM tools support logging and analytics, while cloud and data center providers host workloads rather than acting as identity-verification systems. Therefore, the correct answer is IdPs like Okta and PingFederate.


Contribute your Thoughts:

0/2000 characters

Currently there are no comments in this discussion, be the first to comment!


Save Cancel