Page : 1/10
1. Which of the following mechanisms is used to ensure that a user can be held accountable for their actions in an information system?
2. Which of the following is a common vulnerability associated with password-based authentication systems?
3. What is a common method for implementing least privilege access control?
4. Which of the following is an example of two-factor authentication?
5. When Chris verifies an individualโs identity and adds a unique identifier like a user ID to an identity system, what process has occurred?
Page : 2/10
6. What is the primary benefit of using biometric authentication methods?
7. Googleโs identity integration with a variety of organizations and applications across domains is an example of which of the following?
8. Which of the following is a characteristic of a strong password policy?
9. In access control models, what is the main purpose of the "separation of duties" principle?
10. Which access control model is based on the sensitivity of information and clearance level of subjects?
Page : 3/10
11. What is the primary role of an Access Control List (ACL) in an information system?
12. Which of the following best describes the purpose of an audit trail in an identity and access management system?
13. What type of access control model uses rules that can include the attributes of users, resources, and the environment?
14. What is the primary purpose of Single Sign-On (SSO) in an enterprise environment?
15. Amanda starts at her new job and finds that she has access to a variety of systems that she does not need to accomplish her job. What problem has she encountered?
Page : 4/10
16. Which of the following is a common method for implementing access control lists (ACLs)?
17. What is the primary purpose of a security token in an authentication system?
18. Which access control model is primarily used to enforce security policies within government and military environments?
19. In the context of identity and access management, what does the term "provisioning" refer to?
20. Which of the following is a benefit of using a centralized identity and access management (IAM) system?
Page : 5/10
21. What is an example of an attribute-based access control (ABAC) system?
22. What type of access control is typically used by firewalls?
23. What is the main advantage of implementing Single Sign-On (SSO)?
24. Which of the following best describes an identity federation?
25. Which of the following best describes an identity federation?
Page : 6/10
26. Which of the following describes "Just-In-Time (JIT) provisioning"?
27. What is the primary purpose of access control in an information security environment?
28. What is the purpose of an identity federation in a cloud environment?
29. Which of the following best describes Role-Based Access Control (RBAC)?
30. What is the purpose of an Identity Provider (IdP) in federated identity management?
Page : 7/10
31. When you input a user ID and password, you are performing what important identity and access management activity?
32. Which of the following is considered a logical access control mechanism?
33. What type of attack involves an attacker gaining unauthorized access by using another person's credentials?
34. What is the main advantage of implementing multi-factor authentication (MFA)?
35. What is the primary function of a directory service in identity and access management?
Page : 8/10
36. Which of the following is an example of discretionary access control (DAC)?
37. What is the purpose of a user provisioning process?
38. Which of the following authentication factors is considered "something you have"?
39. What authentication technology can be paired with OAuth to perform identity verification and obtain user profile information using a RESTful API?
40. Which of the following best describes the concept of "separation of duties"?
Page : 9/10
41. What principle ensures that a user only has access to the information and resources necessary for their role?
42. Which access control model is based on the job function of the user?
43. What is the principle of least privilege?
44. What is the main purpose of using a Public Key Infrastructure (PKI) in identity management?
45. Which of the following is NOT a characteristic of Role-Based Access Control (RBAC)?
Page : 10/10
46. NACโs posturing capability determines if a system is sufficiently secure and compliant enough to connect to a network. This is a form of what type of access control?
47. What is a major benefit of implementing multi-factor authentication (MFA)?
48. Which of the following describes a challenge-response authentication mechanism?
49. Which of the following protocols is commonly used for directory services and can be used to implement Single Sign-On (SSO)?
50. Jim wants to implement an access control scheme that will ensure that users cannot delegate access. He also wants to enforce access control at the operating system level. What access control mechanism best fits these requirements?