1.
An organization's security policy states that users must authenticate using something you do. Which of the following would meet the objectives of the security policy?
2.
Which of the following protocols is MOST likely to be leveraged by users who need additional information about another user?
3.
The security manager wants to unify the storage of credential, phone numbers, office numbers, and address information into one system. Which of the following is a system that will support the requirement on its own?
4.
Joe, a network administrator, is able to manage the backup software console by using his network login credentials. Which of the following authentication services is the MOST likely using?
5.
An organization is implementing a password management application which requires that all local administrator passwords be stored and automatically managed.
Auditors will be responsible for monitoring activities in the application by reviewing the logs. Which of the following security controls is the BEST option to prevent auditors from accessing or modifying passwords in the application?
6.
A security administrator is tackling issues related to authenticating users at a remote site. There have been a large number of security incidents that resulted from either tailgating or impersonation of authorized users with valid credentials. The security administrator has been told to implement multifactor authentication in order to control facility access. To secure access to the remote facility, which of the following could be implemented without increasing the amount of space required at the entrance?
7.
The security administrator notices a user logging into a corporate Unix server remotely as root. Which of the following actions should the administrator take?
8.
A company plans to expand by hiring new engineers who work in highly specialized areas. Each engineer will have very different job requirements and use unique tools and applications in their job. Which of the following is MOST appropriate to use?
9.
A file on a Linux server has default permissions of rw-rw-r--. The system administrator has verified that Ann, a user, is not a member of the group owner of the file.
Which of the following should be modified to assure that Ann has read access to the file?
10.
Which of the following protocols uses an asymmetric key to open a session and then establishes a symmetric key for the remainder of the session?