Authentication and Access Control Quiz

Identity verification of the user through credentials

Authorization level of the user within the system

Type and integrity of the user's device

Historical activity logs of the user for auditing

Single-Factor Authentication (SFA)

Multi-Factor Authentication (MFA)

Password-Based Authentication

Token-Based Authentication

Remote Access Dial-In User Service

Remote Authentication Dial-In User Service

Remote Access Data Integration Service

Remote Authentication Data Integration Service

Role-Based Access Control (RBAC)

Discretionary Access Control (DAC)

Attribute-Based Access Control (ABAC)

Mandatory Access Control (MAC)

To enforce just-in-time access provisioning for elevated privileges

To implement secure credential storage and management

To facilitate secure remote access to critical systems

To conduct continuous monitoring and auditing of privileged user activities

Direct RDP access

Virtual Private Network (VPN)

Unsecured email access

Public Wi-Fi connections

Implement Multi-Factor Authentication (MFA) to enhance access control

Utilize weak passwords to simplify user access

Disable Network Level Authentication (NLA) to allow broader connectivity

Grant all users unrestricted access to facilitate remote operations

Access based on device type

Access contingent upon temporal parameters

Access predicated on geographic location

Access determined by user roles and permissions

TACACS+ (Terminal Access Controller Access-Control System Plus)

RADIUS (Remote Authentication Dial-In User Service)

LDAP (Lightweight Directory Access Protocol)

SAML (Security Assertion Markup Language)

Potential for unauthorized access due to user-defined permission settings

Implementation of rigid access control policies

Increased complexity in access management and policy enforcement

Restricted user autonomy in permission assignments