Page : 1/10
1. What is the primary purpose of access control in an information security environment?
2. Which of the following is a characteristic of a strong password policy?
3. Which of the following best describes the purpose of an audit trail in an identity and access management system?
4. NACโs posturing capability determines if a system is sufficiently secure and compliant enough to connect to a network. This is a form of what type of access control?
5. When you input a user ID and password, you are performing what important identity and access management activity?
Page : 2/10
6. Which of the following best describes the concept of "separation of duties"?
7. What is the main purpose of using a Public Key Infrastructure (PKI) in identity management?
8. In the context of identity and access management, what does the term "provisioning" refer to?
9. Amanda starts at her new job and finds that she has access to a variety of systems that she does not need to accomplish her job. What problem has she encountered?
10. What type of attack involves an attacker gaining unauthorized access by using another person's credentials?
Page : 3/10
11. Googleโs identity integration with a variety of organizations and applications across domains is an example of which of the following?
12. Which of the following is an example of two-factor authentication?
13. Which of the following mechanisms is used to ensure that a user can be held accountable for their actions in an information system?
14. What is the principle of least privilege?
15. Which of the following describes "Just-In-Time (JIT) provisioning"?
Page : 4/10
16. What is a major benefit of implementing multi-factor authentication (MFA)?
17. Which of the following best describes Role-Based Access Control (RBAC)?
18. Which access control model is primarily used to enforce security policies within government and military environments?
19. Which of the following is a benefit of using a centralized identity and access management (IAM) system?
20. Which of the following best describes an identity federation?
Page : 5/10
21. What principle ensures that a user only has access to the information and resources necessary for their role?
22. Which of the following authentication factors is considered "something you have"?
23. What is the purpose of an Identity Provider (IdP) in federated identity management?
24. Which access control model is based on the sensitivity of information and clearance level of subjects?
25. What is the main advantage of implementing Single Sign-On (SSO)?
Page : 6/10
26. Which of the following protocols is commonly used for directory services and can be used to implement Single Sign-On (SSO)?
27. What is the primary function of a directory service in identity and access management?
28. What type of access control is typically used by firewalls?
29. What is a common method for implementing least privilege access control?
30. Which of the following best describes an identity federation?
Page : 7/10
31. What is the purpose of a user provisioning process?
32. Which access control model is based on the job function of the user?
33. Which of the following is considered a logical access control mechanism?
34. Which of the following is a common method for implementing access control lists (ACLs)?
35. In access control models, what is the main purpose of the "separation of duties" principle?
Page : 8/10
36. What is the primary purpose of Single Sign-On (SSO) in an enterprise environment?
37. What is the primary role of an Access Control List (ACL) in an information system?
38. Which of the following is an example of discretionary access control (DAC)?
39. When Chris verifies an individualโs identity and adds a unique identifier like a user ID to an identity system, what process has occurred?
40. What is the primary purpose of a security token in an authentication system?
Page : 9/10
41. What type of access control model uses rules that can include the attributes of users, resources, and the environment?
42. What is the main advantage of implementing multi-factor authentication (MFA)?
43. Which of the following is a common vulnerability associated with password-based authentication systems?
44. Which of the following is NOT a characteristic of Role-Based Access Control (RBAC)?
45. Which of the following describes a challenge-response authentication mechanism?
Page : 10/10
46. Jim wants to implement an access control scheme that will ensure that users cannot delegate access. He also wants to enforce access control at the operating system level. What access control mechanism best fits these requirements?
47. What authentication technology can be paired with OAuth to perform identity verification and obtain user profile information using a RESTful API?
48. What is the primary benefit of using biometric authentication methods?
49. What is an example of an attribute-based access control (ABAC) system?
50. What is the purpose of an identity federation in a cloud environment?