Page : 1/10
1. What is the main advantage of implementing multi-factor authentication (MFA)?
2. Googleโs identity integration with a variety of organizations and applications across domains is an example of which of the following?
3. Which of the following describes a challenge-response authentication mechanism?
4. What is an example of an attribute-based access control (ABAC) system?
5. Which access control model is based on the sensitivity of information and clearance level of subjects?
Page : 2/10
6. Which of the following is an example of two-factor authentication?
7. What type of access control is typically used by firewalls?
8. Which of the following is a common method for implementing access control lists (ACLs)?
9. What is the primary role of an Access Control List (ACL) in an information system?
10. Amanda starts at her new job and finds that she has access to a variety of systems that she does not need to accomplish her job. What problem has she encountered?
Page : 3/10
11. Which of the following best describes the concept of "separation of duties"?
12. Jim wants to implement an access control scheme that will ensure that users cannot delegate access. He also wants to enforce access control at the operating system level. What access control mechanism best fits these requirements?
13. What type of access control model uses rules that can include the attributes of users, resources, and the environment?
14. Which of the following best describes the purpose of an audit trail in an identity and access management system?
15. Which of the following best describes an identity federation?
Page : 4/10
16. Which of the following is a characteristic of a strong password policy?
17. What principle ensures that a user only has access to the information and resources necessary for their role?
18. What is the principle of least privilege?
19. Which of the following describes "Just-In-Time (JIT) provisioning"?
20. What is the purpose of an Identity Provider (IdP) in federated identity management?
Page : 5/10
21. Which of the following is a common vulnerability associated with password-based authentication systems?
22. What is the primary purpose of a security token in an authentication system?
23. Which of the following best describes an identity federation?
24. What type of attack involves an attacker gaining unauthorized access by using another person's credentials?
25. Which access control model is based on the job function of the user?
Page : 6/10
26. Which of the following mechanisms is used to ensure that a user can be held accountable for their actions in an information system?
27. Which of the following is considered a logical access control mechanism?
28. What is a common method for implementing least privilege access control?
29. Which of the following is an example of discretionary access control (DAC)?
30. Which of the following is a benefit of using a centralized identity and access management (IAM) system?
Page : 7/10
31. In the context of identity and access management, what does the term "provisioning" refer to?
32. When Chris verifies an individualโs identity and adds a unique identifier like a user ID to an identity system, what process has occurred?
33. Which of the following best describes Role-Based Access Control (RBAC)?
34. What is the primary function of a directory service in identity and access management?
35. What is the main advantage of implementing Single Sign-On (SSO)?
Page : 8/10
36. What is the primary purpose of Single Sign-On (SSO) in an enterprise environment?
37. When you input a user ID and password, you are performing what important identity and access management activity?
38. NACโs posturing capability determines if a system is sufficiently secure and compliant enough to connect to a network. This is a form of what type of access control?
39. What is the primary benefit of using biometric authentication methods?
40. What is the purpose of a user provisioning process?
Page : 9/10
41. What is the purpose of an identity federation in a cloud environment?
42. What is a major benefit of implementing multi-factor authentication (MFA)?
43. Which of the following protocols is commonly used for directory services and can be used to implement Single Sign-On (SSO)?
44. In access control models, what is the main purpose of the "separation of duties" principle?
45. What is the main purpose of using a Public Key Infrastructure (PKI) in identity management?
Page : 10/10
46. Which access control model is primarily used to enforce security policies within government and military environments?
47. What is the primary purpose of access control in an information security environment?
48. Which of the following is NOT a characteristic of Role-Based Access Control (RBAC)?
49. Which of the following authentication factors is considered "something you have"?
50. What authentication technology can be paired with OAuth to perform identity verification and obtain user profile information using a RESTful API?