Your development team is testing a new driver on Windows 11. It's signed with an internal test certificate, but Windows refuses to load it, citing driver signing policies. What must be done for the code to run temporarily on a test system without disabling security for all users?

D) Use Group Policy to bypass signing

An attacker attempts to bypass Secure Boot by exploiting UEFI firmware to insert a malicious bootloader. What countermeasure would most effectively detect or prevent such a compromise?

C) Secure Boot with TPM-backed attestation

Your company requires certain internally-developed applications and drivers to run on employee laptops. These apps are signed, but not by Microsoft. Which strategy ensures both security and functionality without compromising Secure Boot or Code Integrity?

C) Enroll the company's code signing certificate in the UEFI firmware and Windows Trust Store

B) Use self-signed certificates and disable enforcement

D) Whitelist executables manually in registry

During a security audit, you discover that an attacker who compromised a standard user account is querying the AD for domain admin accounts and accessing other systems. Which security best practice would most effectively limit this type of lateral movement?

C) Implement Tiered Administration and Privileged Access Workstations (PAWs)

A) Use only one domain admin account for the whole organization

B) Store admin credentials in Group Policy Objects (GPOs)

D) Disable account lockout policies to reduce disruptions

You receive alerts that multiple failed logins from one IP address are targeting many AD accounts. This activity resembles a password spraying attack. What AD security feature can help mitigate this threat?

B) Fine-Grained Password Policies

Your security team wants to protect domain admins from phishing attacks and credential theft. Which solution would provide the best defense against compromised credentials?

B) Require smart card authentication and restrict logon to secure devices

A) Disable all email access for domain admins

C) Only allow domain admins to use their credentials over VPN

D) Implement time-based restrictions for login hours

You find that many legacy service accounts in AD have never had their passwords changed and have excessive permissions. What is the most secure approach to mitigate the risks these accounts pose?

C) Rotate their passwords regularly and apply the principle of least privilege

A) Enable interactive logon for all service accounts

B) Move them to the Domain Admins group for better visibility

D) Disable all service accounts immediately

Security Hardening, Secure Boot and AD

Professional Development

•

14 Qs

Similar activities

CONTENIDOS PREVIOS SEGURIDAD INDUSTRIAL

Professional Development

•

10 Qs

SSL/TLS Inspection

Professional Development

•

16 Qs

QM Bảo trì chất lượng

Professional Development

•

10 Qs

5. Terminations, Conductors and Stringing Methodology

Professional Development

•

15 Qs

PROJECT MANAGEMENT

Professional Development

•

14 Qs

Quiz Programa para Arduino de motor paso a paso

Professional Development

•

10 Qs

Data Types

Professional Development

•

10 Qs

DEFENSA ALIMENTARIA: SIMULACRO DE PREPARACIÓN Y RESPUESTA EFICA

Professional Development

•

10 Qs

Security Hardening, Secure Boot and AD

Quiz

•

Engineering

•

Professional Development

•

Practice Problem

•

Medium

Usha B A

Used 1+ times

FREE Resource

14 questions

Show all answers

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the primary goal of security hardening?

A) Increase system performance

B) Make systems easier to use

C) Reduce the system's attack surface

D) Enhance system aesthetics

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following is a common first step in system hardening?

A) Installing antivirus software

B) Disabling unnecessary services and ports

C) Creating user accounts

D) Defragmenting the hard drive

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is a key benefit of regularly updating software as part of security hardening?

C) It increases system storage capacity

B) It reduces the likelihood of vulnerabilities

D) It enhances the speed of the system

A) It improves user interface design

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which of the following practices helps in securing user accounts during system hardening?

A) Using default passwords

B) Implementing multi-factor authentication

D) Sharing passwords among users

C) Allowing unlimited login attempts

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What is the purpose of disabling unused network ports in system hardening?

C) To simplify network configuration

B) To prevent unauthorized access

A) To improve network speed

D) To enhance data storage capabilities

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

You’re an IT administrator at a large enterprise. During a routine check, you discover a system booting with a non-signed bootloader. The system runs, but you're concerned about the risk. Which feature would help prevent this issue in the future?

A) BIOS password protection

B) Secure Boot

C) Full disk encryption

D) UEFI Shell access

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

A user downloads and runs a suspicious program. The program attempts to load a custom kernel-mode driver not signed by a trusted authority. What Windows feature will prevent this driver from executing?

A) SmartScreen

B) AppLocker

C) Device Guard / Code Integrity

D) BitLocker

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

12 questions

Surgencia Natural + Analisis Nodal

Quiz

•

Professional Development

10 questions

DISEÑO ELÉCTRICO 4

Quiz

•

Professional Development

10 questions

EE 030 S2

Quiz

•

Professional Development

15 questions

Java Networking Fundamentals

Quiz

•

Professional Development

12 questions

[SEON Knowledge Sharing] Economic Evaluation - PreQuiz

Quiz

•

Professional Development

10 questions

Cyber Security for Remote Users

Quiz

•

Professional Development

13 questions

Quality Assestment

Quiz

•

Professional Development

18 questions

3003 LO4 12 RCDs Voltage Current & Equipment Class Measurement

Quiz

•

Professional Development

Popular Resources on Wayground

25 questions

Multiplication Facts

Quiz

•

5th Grade

15 questions

4:3 Model Multiplication of Decimals by Whole Numbers

Quiz

•

5th Grade

10 questions

The Best Christmas Pageant Ever Chapters 1 & 2

Quiz

•

4th Grade

12 questions

Unit 4 Review Day

Quiz

•

3rd Grade

20 questions

Christmas Trivia

Quiz

•

6th - 8th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

14 questions

Christmas Trivia

Quiz

•

5th Grade

15 questions

Solving Equations with Variables on Both Sides Review

Quiz

•

8th Grade

Discover more resources for Engineering

26 questions

Christmas Movie Trivia

Lesson

•

8th Grade - Professio...

20 questions

Disney Characters

Quiz

•

Professional Development

20 questions

Customer Service

Quiz

•

Professional Development

10 questions

Food Idioms

Quiz

•

Professional Development

20 questions

NCCER Power Tools Quiz

Quiz

•

Professional Development