QUESTION 55 A security engineer at a manufacturing company is implementing a third-party cloud application. Rather than create users manually in the application, the engineer decides to use the SAML protocol. Which of the following is being used for this implementation?

D. The manufacturing company is the identity provider, and the cloud company is the service provider.

A. The manufacturing company is the service provider, and the cloud company is the identity provider.

B. The manufacturing company is the authorization provider, and the cloud company is the service provider.

C. The manufacturing company is the identity provider, and the cloud company is the OAuth provider.

E. The manufacturing company is the service provider, and the cloud company is the authorization provider.

QUESTION 10 A department head at a university resigned on the first day of spring semester. It was subsequently determined that the department head deleted numerous files and directories from the server-based home directory while the campus was closed. Which of the following policies or procedures could have prevented this form occurring?

B. Permissions auditing and review

QUESTION 110 After a recent security breach at a hospital, it was discovered that nursing staff members, who were working the overnight shift, searched for and accessed private health information for local celebrities who were patients at the hospital. Which of the following would have enabled the hospital to discover this behavior BEFORE a breach occurred?

D. Location-based policy enforcement

QUESTION 206 A security analyst is reviewing the password policy for a service account that is used for a critical network service. The password policy for this account is as follows: Enforce password history: 3 passwords remembered Maximum password age: 30 days Minimum password age: 0 days Complexity requirements: At least 1 special character, 1 uppercase Minimum password length: 7 characters Lockout duration: 1 day Lockout threshold: 5 failed attempts in 15 minutes Which of the following adjustments would be MOST appropriate for the service account?

B. Set the maximum password age to 15 days

C. Set the minimum password age to seven days

D. Increase password length to 18 characters

QUESTION 222 A small to medium sized company wants to block the use if USB devices on its network. Which of the following is the MOST cost effective way for the security analyst to prevent this?

C. Conduct user awareness training

QUESTION 233 A member of the human resouces department is searching for candidate resumes and encounters the following error message when attempting to access popular job search websites: Site Cannot Be Displayed: Unathorized Access Policy Violation: Job Search User Group: Retail_Employee_Access Client Address: 10.13.78.145 DNS Server: 10.1.1.9 Proxy IP Address: 10.1.1.29 Contact your systems administrator for assisstance Which of the following would resolve this issue without compromising the company's security policies?

B. Add the employee to the less restrictive group on the content filter

A. Review the DNS settings and IP address on the employee's computer

C. Remove the proxy settings from the employee's web browser

D. Create an exception for the job search stes in the host-based firewall on the employee's computer

QUESTION 45 A company has been experiencing many successful email phishing attacks, which have been resulting in the compromise of multiple employees' accounts when employees reply with their credentials. The security administrator has been notifying each user and resetting the account passwords when accounts become compromised. Regardless of this process, the same accounts continue to be compromised even when the users do not respond to the phishing attacks. Which of the following are MOST likely to prevent similar account compromises? (Select TWO).

A. Enforce password reuse limitations.

C. Reset the account security questions.

E. Implement time-of-day restrictions.

QUESTION 90 A security analyst is doing a vulnerability assessment on a database server. The scanning tool returns the following information: Database: CustomerAccess1 Column: Password Data type: MD5 Hash Salted?: No There have been several security breaches on the web server that accesses this database. The security team is instructed to mitigate the impact of any possible breaches. The security team is also instructed to improve the security on this database by making it less vulnerable to offline attacks. Which of the following would BEST accomplish these goals? (Select TWO).

B. Generate password hashes using SHA-256

C. Force users to change passwords the next time they log on.

A. Start using salts to generate MD5 password hashes..

D. Limit users to five attempted logons before they are locked out.

E. Require the web server to only use TLS 1.2 encryption.

Security + (SY0-501) Domain 4

Authored by Brett Glines

Other

Professional Development

Used 85+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

27 questions

Show all answers

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

QUESTION 102 Which of the following access management concepts is associated with file permissions?

A. Authentication

B. Accounting

C. Authorization

D. Identification

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

QUESTION 177 Users from two organizations, each with its own PKI, need to begin working together on a joint project. Which of the following would allow the users of the separate PKIs to work together without connection errors?

A. Trust model

B. Stapling

C. Intermediate CA

D. Key Escrow

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

QUESTION 34 Which of the following BEST implements control diversity to reduce the risks associated with the authentication of employees into company resources?

A. Enforcing the use of something you know and something you have for authentication

B. Requiring employees to sign the company's password and acceptable use policies

C. Implementing LDAP authentication for some systems and RADIUS authentication for others

D. Publishing a password policy and enforcing password requirements via a GPO

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

QUESTION 40 The Chief Information Security Officer (CISO) of an organization has tasked the security analysis team with researching and developing a multifactor authentication alternative to the existing single-factor version. The team decides that multifactor, for this organization, will mean three separate and distinct authentication methods. Which of the following options BEST meets this requirement?

A. Retina scan, blood sample, token

B. Token, certificate, voice recognition

C. Fingerprint, token, challenge question

D. PIV, token, challenge question

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

QUESTION 6 Company A has acquired Company B. Company A has different domains spread globally, and typically migrates its acquisitions infrastructure under its own domain infrastructure. Company B, however, cannot be merged into Company A's domain infrastructure. Which of the following methods would allow the two companies to access one another's resources?

A. Attestation

B. Federation

C. Single sign-on

D. Kerberos

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

QUESTION 97 Which of the following access management concepts is MOST closely associated with the use of a password or PIN?

A. Authorization

B. Authentication

C. Accounting

D. Identification

MULTIPLE CHOICE QUESTION

2 mins • 1 pt

QUESTION 136 A security analyst is mitigating a pass-the-hash vulnerability on a Windows infrastructure. Given the requirement, which of the following should the security analyst do to MINIMIZE the risk?

A. Enable CHAP

B. Disable NTLM

C. Enable Kerberos

D. Disable PAP

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

25 questions

HR Quiz for MBA II Year - RGCET

Quiz

•

Professional Development

25 questions

Round 1

Quiz

•

Professional Development

23 questions

BTS

Quiz

•

2nd Grade - Professio...

26 questions

Ouat Quiz

Quiz

•

5th Grade - Professio...

22 questions

AWS Elastic Load Balancing and Monitoring

Quiz

•

Professional Development

25 questions

LEA I

Quiz

•

University - Professi...

24 questions

Suits S1 Ep 5&6

Quiz

•

Professional Development

25 questions

Geography Biodevesity (Sai Competitive Institute)

Quiz

•

Professional Development

Popular Resources on Wayground

8 questions

Spartan Way - Classroom Responsible

Quiz

•

9th - 12th Grade

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

14 questions

Boundaries & Healthy Relationships

Lesson

•

6th - 8th Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

3 questions

Integrity and Your Health

Lesson

•

6th - 8th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

9 questions

FOREST Perception

Lesson

•

20 questions

Main Idea and Details

Quiz

•

5th Grade

Discover more resources for Other

15 questions

LOTE_SPN2 5WEEK3 Day 2 Itinerary

Quiz

•

Professional Development

6 questions

Copy of G5_U6_L5_22-23

Lesson

•

KG - Professional Dev...

10 questions

March Quiz

Quiz

•

Professional Development

5 questions

Copy of G5_U6_L8_22-23

Lesson

•

KG - Professional Dev...

10 questions

suffixes FUL OR LESS

Quiz

•

Professional Development

Security + (SY0-501) Domain 4

QUESTION 102 Which of the following access management concepts is associated with file permissions?

QUESTION 177 Users from two organizations, each with its own PKI, need to begin working together on a joint project. Which of the following would allow the users of the separate PKIs to work together without connection errors?

QUESTION 34 Which of the following BEST implements control diversity to reduce the risks associated with the authentication of employees into company resources?

QUESTION 97 Which of the following access management concepts is MOST closely associated with the use of a password or PIN?

QUESTION 136 A security analyst is mitigating a pass-the-hash vulnerability on a Windows infrastructure. Given the requirement, which of the following should the security analyst do to MINIMIZE the risk?

QUESTION 151 Which of the following uses tokens between the identity provider and the service provider to authenticate and authorize users to resources?

QUESTION 168 A systems administrator is configuring a new network for TACACS+ management and authentication. Which of the following must be configured to provide authentication between the switch and the TACACS+ server?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Other