ITGSS Certified DevOps Engineer Practice Test

What system is often used for authentication by orchestrators?

• A. Directory service
• B. Token service
• C. SSH keys
• D. LDAP service

The correct answer is: Directory service

The selection of a directory service for authentication by orchestrators is a logical and effective choice. Directory services, such as Microsoft Active Directory or OpenLDAP, provide a centralized way to store and manage user credentials, access rights, and other identity information. This centralization is crucial in environments that use orchestration tools, as it allows for consistent user authentication across various services and applications. Using a directory service enhances security and management efficiency. It enables roles and permissions to be defined at a centralized level, simplifying user management as organizations scale. Furthermore, orchestration tools frequently interface with these directory services to authenticate users and service accounts seamlessly, ensuring that only authorized personnel can initiate or modify deployments. While other options, such as token services and SSH keys, are valid components of the authentication ecosystem, they tend to serve specific functions or scenarios. Token services are typically used for generating temporary credentials to access APIs, while SSH keys are primarily focused on secure access for system administrators and developers to servers rather than broad user authentication management. LDAP service, while related to directory services, is more of a protocol used to access and maintain directory information rather than a standalone system for authentication. Thus, the directory service stands out as the most comprehensive and appropriate option for orchestrators requiring robust authentication