Your development team is testing a new driver on Windows 11. It's signed with an internal test certificate, but Windows refuses to load it, citing driver signing policies. What must be done for the code to run temporarily on a test system without disabling security for all users?

D) Use Group Policy to bypass signing

An attacker attempts to bypass Secure Boot by exploiting UEFI firmware to insert a malicious bootloader. What countermeasure would most effectively detect or prevent such a compromise?

C) Secure Boot with TPM-backed attestation

Your company requires certain internally-developed applications and drivers to run on employee laptops. These apps are signed, but not by Microsoft. Which strategy ensures both security and functionality without compromising Secure Boot or Code Integrity?

C) Enroll the company's code signing certificate in the UEFI firmware and Windows Trust Store

B) Use self-signed certificates and disable enforcement

D) Whitelist executables manually in registry

During a security audit, you discover that an attacker who compromised a standard user account is querying the AD for domain admin accounts and accessing other systems. Which security best practice would most effectively limit this type of lateral movement?

C) Implement Tiered Administration and Privileged Access Workstations (PAWs)

A) Use only one domain admin account for the whole organization

B) Store admin credentials in Group Policy Objects (GPOs)

D) Disable account lockout policies to reduce disruptions

You receive alerts that multiple failed logins from one IP address are targeting many AD accounts. This activity resembles a password spraying attack. What AD security feature can help mitigate this threat?

B) Fine-Grained Password Policies

Your security team wants to protect domain admins from phishing attacks and credential theft. Which solution would provide the best defense against compromised credentials?

B) Require smart card authentication and restrict logon to secure devices

A) Disable all email access for domain admins

C) Only allow domain admins to use their credentials over VPN

D) Implement time-based restrictions for login hours

You find that many legacy service accounts in AD have never had their passwords changed and have excessive permissions. What is the most secure approach to mitigate the risks these accounts pose?

C) Rotate their passwords regularly and apply the principle of least privilege

A) Enable interactive logon for all service accounts

B) Move them to the Domain Admins group for better visibility

D) Disable all service accounts immediately

Security Hardening, Secure Boot and AD

Professional Development

•

14 Qs

Similar activities

Directory Services

Professional Development

•

12 Qs

Taller 2. ISO 9001:2015

Professional Development

•

10 Qs

Quản lý rủi ro về chất lượng sản phẩm

Professional Development

•

12 Qs

Quiz Convección Natural

Professional Development

•

10 Qs

Quiz sobre Direção Hidráulica

Professional Development

•

10 Qs

Motor basico

Professional Development

•

18 Qs

Emissions Control Systems Quiz

Professional Development

•

10 Qs

3. Introduction to Power Supply Installations

Professional Development

•

15 Qs

Security Hardening, Secure Boot and AD

Quiz

•

Engineering

•

Professional Development

•

Practice Problem

•

Medium

Usha B A

Used 1+ times

FREE Resource

14 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the primary goal of security hardening?

A) Increase system performance

B) Make systems easier to use

C) Reduce the system's attack surface

D) Enhance system aesthetics

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is a common first step in system hardening?

A) Installing antivirus software

B) Disabling unnecessary services and ports

C) Creating user accounts

D) Defragmenting the hard drive

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is a key benefit of regularly updating software as part of security hardening?

C) It increases system storage capacity

B) It reduces the likelihood of vulnerabilities

D) It enhances the speed of the system

A) It improves user interface design

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following practices helps in securing user accounts during system hardening?

A) Using default passwords

B) Implementing multi-factor authentication

D) Sharing passwords among users

C) Allowing unlimited login attempts

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the purpose of disabling unused network ports in system hardening?

C) To simplify network configuration

B) To prevent unauthorized access

A) To improve network speed

D) To enhance data storage capabilities

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

You’re an IT administrator at a large enterprise. During a routine check, you discover a system booting with a non-signed bootloader. The system runs, but you're concerned about the risk. Which feature would help prevent this issue in the future?

A) BIOS password protection

B) Secure Boot

C) Full disk encryption

D) UEFI Shell access

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A user downloads and runs a suspicious program. The program attempts to load a custom kernel-mode driver not signed by a trusted authority. What Windows feature will prevent this driver from executing?

A) SmartScreen

B) AppLocker

C) Device Guard / Code Integrity

D) BitLocker

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

10 questions

Security Fundamentals and Windows OS Security

Quiz

•

Professional Development

16 questions

Geologia

Quiz

•

Professional Development

11 questions

Trivia de viernes

Quiz

•

Professional Development

10 questions

IoT Quiz

Quiz

•

Professional Development

10 questions

Taller 3. ISO 9001:2025

Quiz

•

Professional Development

10 questions

Taller 1. ISO 9001:2015

Quiz

•

Professional Development

10 questions

IHS Topik 3-6

Quiz

•

Professional Development

10 questions

Comunidades Virtuales en E-Learning

Quiz

•

Professional Development

Popular Resources on Wayground

10 questions

Forest Self-Management

Lesson

•

1st - 5th Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

30 questions

Thanksgiving Trivia

Quiz

•

9th - 12th Grade

30 questions

Thanksgiving Trivia

Quiz

•

6th Grade

11 questions

Would You Rather - Thanksgiving

Lesson

•

KG - 12th Grade

48 questions

The Eagle Way

Quiz

•

6th Grade

10 questions

Identifying equations

Quiz

•

KG - University

10 questions

Thanksgiving

Lesson

•

5th - 7th Grade

Discover more resources for Engineering

20 questions

HS2C2 AB QUIZIZZ

Quiz

•

1st Grade - Professio...