Which of the following is not a feature or ability of a Cloud Access Security Broker (CASB) solution?

A Cloud Access Security Broker (CASB) is designed to act as a control point for security policies in cloud environments, managing data security, compliance, and user access across cloud services. One of the primary functions of a CASB is to provide visibility into cloud application behavior, enforce security policies, and protect sensitive data from unauthorized access.

Configuration management is typically classified as a practice or a set of tools focused on maintaining and organizing hardware and software configurations, which is not a core feature of a CASB. Instead, CASBs are more concerned with monitoring user activity, ensuring compliance with regulations, and applying security controls over cloud services.

In contrast, the other options represent common capabilities of CASB solutions. Single Sign-On (SSO) facilitates user authentication across multiple applications with a single set of credentials, enhancing user experience and security. Antivirus functionality provides real-time protection against malicious software for data transferred through cloud applications. Data exfiltration mitigation refers to the ability to prevent unauthorized data extraction, a central focus for CASBs to ensure sensitive information is safeguarded from potential leaks.

Therefore, while the features of SSO, antivirus, and data exfiltration mitigation directly align with the objectives of a CASB, configuration management does not typically fall under the