• Home
  • Microsoft Exam Dumps
  • Why Choose Lead2pass?
  • Sitemap

Lead2pass New Updated IT Exam Questions

Exam collection of Micfosoft, Cisco,IBM,CompTIA and other IT exam

Menu
  • Home
  • Microsoft Exam Dumps
  • Why Choose Lead2pass?
  • Sitemap
 › CompTIA › SY0-401 Dumps › SY0-401 Exam Questions › SY0-401 New Questions › SY0-401 PDF › SY0-401 VCE › [Lead2pass New] Download Free CompTIA SY0-401 Exam Questions And Answers From Lead2pass (626-650)

[Lead2pass New] Download Free CompTIA SY0-401 Exam Questions And Answers From Lead2pass (626-650)

admin October 27, 2017     Comment Closed    

Lead2pass 2017 October New CompTIA SY0-401 Exam Dumps!

100% Free Download! 100% Pass Guaranteed!

How to 100% pass SY0-401 exam? Lead2pass SY0-401 dump is unparalleled in quality and is 100% guaranteed to make you pass SY0-401 exam. All the SY0-401 exam questions are the latest. Here are some free share of CompTIA SY0-401 dumps.

Following questions and answers are all new published by CompTIA Official Exam Center: https://www.lead2pass.com/sy0-401.html

QUESTION 626
The company’s sales team plans to work late to provide the Chief Executive Officer (CEO) with a special report of sales before the quarter ends. After working for several hours, the team finds they cannot save or print the reports.
Which of the following controls is preventing them from completing their work?

A.    Discretionary access control
B.    Role-based access control
C.    Time of Day access control
D.    Mandatory access control

Answer: C
Explanation:
Time of day restrictions limit when users can access specific systems based on the time of day or week. It can limit access to sensitive environments to normal business hours when oversight and monitoring can be performed to prevent fraud, abuse, or intrusion. In this case, the sales team is prevented from saving or printing reports after a certain time.

QUESTION 627
Which of the following security concepts can prevent a user from logging on from home during the weekends?

A.    Time of day restrictions
B.    Multifactor authentication
C.    Implicit deny
D.    Common access card

Answer: A
Explanation:
Time of day restrictions limit when users can access specific systems based on the time of day or week. It can limit access to sensitive environments to normal business hours when oversight and monitoring can be performed to prevent fraud, abuse, or intrusion.

QUESTION 628
A technician is reviewing the logical access control method an organization uses. One of the senior managers requests that the technician prevent staff members from logging on during nonworking days. Which of the following should the technician implement to meet managements request?

A.    Enforce Kerberos
B.    Deploy smart cards
C.    Time of day restrictions
D.    Access control lists

Answer: C
Explanation:
Time of day restrictions limit when users can access specific systems based on the time of day or week. It can limit access to sensitive environments to normal business hours.

QUESTION 629
Ann, the security administrator, wishes to implement multifactor security. Which of the following should be implemented in order to compliment password usage and smart cards?

A.    Hard tokens
B.    Fingerprint readers
C.    Swipe badge readers
D.    Passphrases

Answer: B
Explanation:
A multifactor authentication method uses two or more processes for logon. A twofactor method might use smart cards and biometrics for logon. For obvious reasons, the two or more factors employed should not be from the same category.

QUESTION 630
Hotspot Question
For each of the given items, select the appropriate authentication category from the dropdown choices.
Instructions: When you have completed the simulation, please select the Done button to submit.

 

Answer:

 

Explanation:
Something you are includes fingerprints, retina scans, or voice recognition.
Something you have includes smart cards, token devices, or keys.
Something you know includes a passwords, codes, PINs, combinations, or secret phrases.
Somewhere you are includes a physical location s or logical addresses, such as domain name, an IP address, or a MAC address.
Something you do includes your typing rhythm, a secret handshake, or a private knock http://en.wikipedia.org/wiki/Password_authentication_protocol#Working_cycle http://en.wikipedia.org/wiki/Smart_card#Security

QUESTION 631
A network administrator uses an RFID card to enter the datacenter, a key to open the server rack, and a username and password to logon to a server.
These are examples of which of the following?

A.    Multifactor authentication
B.    Single factor authentication
C.    Separation of duties
D.    Identification

Answer: B
Explanation:
Single-factor authentication (SFA) is a process for securing access to a given system by identifying the party requesting access via a single category of credentials. In this case, the network administrator makes use of an RFID card to access the datacenter, a key to access the server rack, and a username and password to access a server.

QUESTION 632
Use of a smart card to authenticate remote servers remains MOST susceptible to which of the following attacks?

A.    Malicious code on the local system
B.    Shoulder surfing
C.    Brute force certificate cracking
D.    Distributed dictionary attacks

Answer: A
Explanation:
Once a user authenticates to a remote server, malicious code on the user’s workstation could then infect the server.

QUESTION 633
Employee badges are encoded with a private encryption key and specific personal information.
The encoding is then used to provide access to the network. Which of the following describes this access control type?

A.    Smartcard
B.    Token
C.    Discretionary access control
D.    Mandatory access control

Answer: A
Explanation:
Smart cards are credit-card-sized IDs, badges, or security passes with an embedded integrated circuit chip that can include data regarding the authorized bearer. This data can then be used for identification and/or authentication purposes.

QUESTION 634
LDAP and Kerberos are commonly used for which of the following?

A.    To perform queries on a directory service
B.    To store usernames and passwords for Federated Identity
C.    To sign SSL wildcard certificates for subdomains
D.    To utilize single sign-on capabilities

Answer: D
Explanation:
Single sign-on is usually achieved via the Lightweight Directory Access Protocol (LDAP), although Kerberos can also be used.

QUESTION 635
After Ann, a user, logs into her banking websites she has access to her financial institution mortgage, credit card, and brokerage websites as well. Which of the following is being described?

A.    Trusted OS
B.    Mandatory access control
C.    Separation of duties
D.    Single sign-on

Answer: D
Explanation:
Single sign-on means that once a user (or other subject) is authenticated into a realm, re- authentication is not required for access to resources on any realm entity. The question states that when Ann logs into her banking websites she has access to her financial institution mortgage, credit card, and brokerage websites as well. This describes an SSO scenario.

QUESTION 636
A company wants to ensure that all credentials for various systems are saved within a central database so that users only have to login once for access to all systems. Which of the following would accomplish this?

A.    Multi-factor authentication
B.    Smart card access
C.    Same Sign-On
D.    Single Sign-On

Answer: D
Explanation:
Single sign-on means that once a user (or other subject) is authenticated into a realm, re- authentication is not required for access to resources on any realm entity. Single sign-on is able to internally translate and store credentials for the various mechanisms, from the credential used for original authentication.

QUESTION 637
A user attempting to log on to a workstation for the first time is prompted for the following information before being granted access: username, password, and a four-digit security pin that was mailed to him during account registration. This is an example of which of the following?

A.    Dual-factor authentication
B.    Multifactor authentication
C.    Single factor authentication
D.    Biometric authentication

Answer: C
Explanation:
Multi-factor authentication (MFA) is a method of computer access control which a user can pass by successfully presenting authentication factors from at least two of the three categories:
knowledge factors (“things only the user knows”), such as passwords possession factors (“things only the user has”), such as ATM cards inherence factors (“things only the user is”), such as biometrics
In this question a username, password, and a four-digit security pin knowledge are all knowledge factors (something the user knows). Therefore, this is single-factor authentication.

QUESTION 638
Which of the following allows a network administrator to implement an access control policy based on individual user characteristics and NOT on job function?

A.    Attributes based
B.    Implicit deny
C.    Role based
D.    Rule based

Answer: A
Explanation:
Attribute-based access control allows access rights to be granted to users via policies, which combine attributes together. The policies can make use of any type of attributes, which includes user attributes, resource attributes and environment attributes.

QUESTION 639
Which of the following is best practice to put at the end of an ACL?

A.    Implicit deny
B.    Time of day restrictions
C.    Implicit allow
D.    SNMP string

Answer: A
Explanation:
An implicit deny clause is implied at the end of each ACL. This implies that if you aren’t specifically granted access or privileges for a resource, you’re denied access by default. The implicit deny clause is set by the system.

QUESTION 640
Users report that they are unable to access network printing services. The security technician checks the router access list and sees that web, email, and secure shell are allowed. Which of the following is blocking network printing?

A.    Port security
B.    Flood guards
C.    Loop protection
D.    Implicit deny

Answer: D
Explanation:
Implicit deny says that if you aren’t explicitly granted access or privileges for a resource, you’re denied access by default. The scenario does not state that network printing is allowed in the router access list, therefore, it must be denied by default.

QUESTION 641
Failure to validate the size of a variable before writing it to memory could result in which of the following application attacks?

A.    Malicious logic
B.    Cross-site scripting
C.    SQL injection
D.    Buffer overflow

Answer: D

QUESTION 642
In order for Sara, a client, to logon to her desktop computer, she must provide her username, password, and a four digit PIN. Which of the following authentication methods is Sara using?

A.    Three factor
B.    Single factor
C.    Two factor
D.    Four factor

Answer: B
Explanation:
Single-factor authentication is when only one authentication factor is used. In this case, Something you know is being used as an authentication factor. Username, password, and PIN form part of Something you know.

QUESTION 643
The security department has implemented a new laptop encryption product in the environment. The product requires one user name and password at the time of boot up and also another password after the operating system has finished loading. This setup is using which of the following authentication types?

A.    Two-factor authentication
B.    Single sign-on
C.    Multifactor authentication
D.    Single factor authentication

Answer: D
Explanation:
Single-factor authentication is when only one authentication factor is used. In this case, Something you know is being used as an authentication factor.
Username, password, and PIN form part of Something you know.

QUESTION 644
Which of the following is a measure of biometrics performance which rates the ability of a system to correctly authenticate an authorized user?

A.    Failure to capture
B.    Type II
C.    Mean time to register
D.    Template capacity

Answer: B
Explanation:
Type II, or false acceptance rate (FAR), is the measure of the likelihood that the biometric security system will incorrectly accept an access attempt by an unauthorized user.

QUESTION 645
Use of group accounts should be minimized to ensure which of the following?

A.    Password security
B.    Regular auditing
C.    Baseline management
D.    Individual accountability

Answer: D
Explanation:
Holding users accountable for their actions is part of security, and can only be achieved by users having their own user accounts. To adequately provide accountability, the use of shared or group accounts should be discouraged.

QUESTION 646
The system administrator is tasked with changing the administrator password across all 2000 computers in the organization. Which of the following should the system administrator implement to accomplish this task?

A.    A security group
B.    A group policy
C.    Key escrow
D.    Certificate revocation

Answer: B
Explanation:
Group policy is used to manage Windows systems in a Windows network domain environment by means of a Group Policy Object (GPO). GPO’s include a number of settings related to credentials, such as password complexity requirements, password history, password length, account lockout settings.

QUESTION 647
A network inventory discovery application requires non-privileged access to all hosts on a network for inventory of installed applications. A service account is created by the network inventory discovery application for accessing all hosts. Which of the following is the MOST efficient method for granting the account non-privileged access to the hosts?

A.    Implement Group Policy to add the account to the users group on the hosts
B.    Add the account to the Domain Administrator group
C.    Add the account to the Users group on the hosts
D.    Implement Group Policy to add the account to the Power Users group on the hosts.

Answer: A
Explanation:
Group Policy is an infrastructure that allows you to implement specific configurations for users and computers. Group Policy settings are contained in Group Policy objects (GPOs), which are linked to the following Active Directory directory service containers: sites, domains, or organizational units (OUs). This means that if the GPO is linked to the domain, all Users groups in the domain will include the service account.

QUESTION 648
A group policy requires users in an organization to use strong passwords that must be changed every 15 days. Joe and Ann were hired 16 days ago. When Joe logs into the network, he is prompted to change his password; when Ann logs into the network, she is not prompted to change her password. Which of the following BEST explains why Ann is not required to change her password?

A.    Ann’s user account has administrator privileges.
B.    Joe’s user account was not added to the group policy.
C.    Ann’s user account was not added to the group policy.
D.    Joe’s user account was inadvertently disabled and must be re-created.

Answer: C
Explanation:
Group policy is used to manage Windows systems in a Windows network domain environment by means of a Group Policy Object (GPO). GPO’s include a number of settings related to credentials, which includes password expiration. Because Anne was not prompted to change her password, it could only mean that her user account was not added to the group policy.

QUESTION 649
An auditing team has found that passwords do not meet best business practices.
Which of the following will MOST increase the security of the passwords? (Select TWO).

A.    Password Complexity
B.    Password Expiration
C.    Password Age
D.    Password Length
E.    Password History

Answer: AD
Explanation:
Passwords should have the strength to avoid discovery through attack, but it should also be easy enough for the user to remember. The length and complexity of a password combined are vital factors in defining a password’s strength.

QUESTION 650
Which of the following passwords is the LEAST complex?

A.    MyTrain!45
B.    [email protected]!!
C.    [email protected]
D.    [email protected]#8

Answer: B
Explanation:
Password policies often enforce a minimum of three out of four standard character types, which includes uppercase and lowercase letters, numbers, and symbols. Although this option includes three of the four character types, it does not include numbers, which makes it less complex than the other options.

More free Lead2pass SY0-401 exam new questions on Google Drive: https://drive.google.com/open?id=0B3Syig5i8gpDLXZsWm9MWmh0a0E

Always up-to-date Lead2pass SY0-401 VCE – everything you need for your CompTIA SY0-401 exam to pass. Our CompTIA SY0-401 software allows you to practise exam dumps in real SY0-401 exam environment. Welcome to choose.

2017 CompTIA SY0-401  (All 1868 Q&As) exam dumps (PDF&VCE) from Lead2pass:

https://www.lead2pass.com/sy0-401.html [100% Exam Pass Guaranteed]

CompTIA SY0-401 Dumps SY0-401 Exam Questions SY0-401 New Questions SY0-401 PDF SY0-401 VCE
Lead2pass SY0-401SY0-401 braindumpsSY0-401 exam dumpsSY0-401 exam questionSY0-401 pdf dumpsSY0-401 practice testSY0-401 study guideSY0-401 vce dumps

 Previous Post

[Lead2pass New] Download Free CompTIA SY0-401 Exam Questions And Answers From Lead2pass (601-625)

― October 27, 2017

Next Post 

[Lead2pass New] Download Free CompTIA SY0-401 Exam Questions And Answers From Lead2pass (651-675)

― October 27, 2017

Author: admin

Related Articles

admin ― April 18, 2018 | Comment Closed

[April 2018] Free Lead2pass CompTIA SY0-401 PDF Exam Questions And Answers Download 1868q

Free Lead2pass CompTIA SY0-401 VCE And PDF Instant Download: https://www.lead2pass.com/sy0-401.html QUESTION 21The security administrator needs to manage traffic on a

admin ― March 9, 2018 | Comment Closed

[March 2018] 2018 CompTIA SY0-401 Dumps Free Download 100% Pass Promised By Lead2pass 1868q

admin ― January 24, 2018 | Comment Closed

[January 2018] Easily Pass SY0-401 Exam By Training Lead2pass New CompTIA VCE Dumps 1868q

admin ― November 24, 2017 | Comment Closed

[Lead2pass New] Free Updated Lead2pass SY0-401 Exam Dumps Download (751-775)

admin ― November 24, 2017 | Comment Closed

[Lead2pass New] Free Updated Lead2pass SY0-401 Exam Dumps Download (726-750)

admin ― November 24, 2017 | Comment Closed

[Lead2pass New] Free Updated Lead2pass SY0-401 Exam Dumps Download (701-725)

admin ― November 24, 2017 | Comment Closed

[Lead2pass New] Free Updated Lead2pass SY0-401 Exam Dumps Download (676-700)

admin ― October 27, 2017 | Comment Closed

[Lead2pass New] Download Free CompTIA SY0-401 Exam Questions And Answers From Lead2pass (651-675)

Categories

Premium VCE Test Engine

VCE Exam Simulator for Mobile

Take exams on your mobile device the same way you do on your desktop. iPhone, iPad and Android devices are supported.

Hottest Microsoft Exam Dumps

HOTMicrosoft 70-243 Dumps ➤ PDF & VCE
HOTMicrosoft 70-246 Dumps ➤ PDF & VCE
HOTMicrosoft 70-247 Dumps ➤ PDF & VCE
HOTMicrosoft 70-331 Dumps ➤ PDF & VCE
HOTMicrosoft 70-332 Dumps ➤ PDF & VCE
HOTMicrosoft 70-333 Dumps ➤ PDF & VCE
HOTMicrosoft 70-341 Dumps ➤ PDF & VCE
HOTMicrosoft 70-342 Dumps ➤ PDF & VCE
HOTMicrosoft 70-346 Dumps ➤ PDF & VCE
HOTMicrosoft 70-347 Dumps ➤ PDF & VCE
HOTMicrosoft 70-410 Dumps ➤ PDF & VCE
HOTMicrosoft 70-411 Dumps ➤ PDF & VCE
HOTMicrosoft 70-412 Dumps ➤ PDF & VCE
HOTMicrosoft 70-413 Dumps ➤ PDF & VCE
HOTMicrosoft 70-414 Dumps ➤ PDF & VCE
HOTMicrosoft 70-417 Dumps ➤ PDF & VCE
HOTMicrosoft 70-457 Dumps ➤ PDF & VCE
HOTMicrosoft 70-458 Dumps ➤ PDF & VCE
HOTMicrosoft 70-461 Dumps ➤ PDF & VCE
HOTMicrosoft 70-462 Dumps ➤ PDF & VCE
HOTMicrosoft 70-463 Dumps ➤ PDF & VCE
HOTMicrosoft 70-464 Dumps ➤ PDF & VCE
HOTMicrosoft 70-465 Dumps ➤ PDF & VCE
HOTMicrosoft 70-466 Dumps ➤ PDF & VCE
HOTMicrosoft 70-467 Dumps ➤ PDF & VCE
HOTMicrosoft 70-469 Dumps ➤ PDF & VCE
HOTMicrosoft 70-480 Dumps ➤ PDF & VCE
HOTMicrosoft 70-481 Dumps ➤ PDF & VCE
HOTMicrosoft 70-482 Dumps ➤ PDF & VCE
HOTMicrosoft 70-483 Dumps ➤ PDF & VCE
HOTMicrosoft 70-486 Dumps ➤ PDF & VCE
HOTMicrosoft 70-487 Dumps ➤ PDF & VCE
HOTMicrosoft 70-488 Dumps ➤ PDF & VCE
HOTMicrosoft 70-489 Dumps ➤ PDF & VCE
HOTMicrosoft 70-511 Dumps ➤ PDF & VCE
HOTMicrosoft 70-513 Dumps ➤ PDF & VCE
HOTMicrosoft 70-515 Dumps ➤ PDF & VCE
HOTMicrosoft 70-532 Dumps ➤ PDF & VCE
HOTMicrosoft 70-533 Dumps ➤ PDF & VCE
HOTMicrosoft 70-534 Dumps ➤ PDF & VCE
HOTMicrosoft 70-640 Dumps ➤ PDF & VCE
HOTMicrosoft 70-642 Dumps ➤ PDF & VCE
HOTMicrosoft 70-646 Dumps ➤ PDF & VCE
HOTMicrosoft 70-687 Dumps ➤ PDF & VCE
HOTMicrosoft 70-688 Dumps ➤ PDF & VCE
HOTMicrosoft 70-689 Dumps ➤ PDF & VCE
HOTMicrosoft 70-692 Dumps ➤ PDF & VCE
HOTMicrosoft 70-695 Dumps ➤ PDF & VCE
HOTMicrosoft 70-696 Dumps ➤ PDF & VCE
HOTMicrosoft 70-697 Dumps ➤ PDF & VCE
HOTMicrosoft 74-335 Dumps ➤ PDF & VCE
HOTMicrosoft 74-338 Dumps ➤ PDF & VCE
HOTMicrosoft 74-343 Dumps ➤ PDF & VCE
HOTMicrosoft 74-344 Dumps ➤ PDF & VCE
HOTMicrosoft 74-409 Dumps ➤ PDF & VCE
HOTMicrosoft 98-361 Dumps ➤ PDF & VCE
HOTMicrosoft 98-367 Dumps ➤ PDF & VCE
HOTMB2-700 Dumps ➤ PDF & VCE
HOTMB2-701 Dumps ➤ PDF & VCE
HOTMB2-702 Dumps ➤ PDF & VCE
HOTMB2-703 Dumps ➤ PDF & VCE
GetAll List Of Microsoft Dumps NOW

Hottest Cisco Exam Dumps

HOTCisco 200-120 Dumps ➤ PDF & VCE
HOTCisco 100-101 Dumps ➤ PDF & VCE
HOTCisco 200-101 Dumps ➤ PDF & VCE
HOTCisco 200-310 Dumps ➤ PDF & VCE
HOTCisco 200-355 Dumps ➤ PDF & VCE
HOTCisco 200-401 Dumps ➤ PDF & VCE
HOTCisco 210-260 Dumps ➤ PDF & VCE
HOTCisco 210-060 Dumps ➤ PDF & VCE
HOTCisco 210-065 Dumps ➤ PDF & VCE
HOTCisco 300-101 Dumps ➤ PDF & VCE
HOTCisco 300-115 Dumps ➤ PDF & VCE
HOTCisco 300-135 Dumps ➤ PDF & VCE
HOTCisco 300-206 Dumps ➤ PDF & VCE
HOTCisco 300-207 Dumps ➤ PDF & VCE
HOTCisco 300-208 Dumps ➤ PDF & VCE
HOTCisco 300-209 Dumps ➤ PDF & VCE
HOTCisco 300-070 Dumps ➤ PDF & VCE
HOTCisco 300-075 Dumps ➤ PDF & VCE
HOTCisco 300-080 Dumps ➤ PDF & VCE
HOTCisco 300-085 Dumps ➤ PDF & VCE
HOTCisco 400-101 Dumps ➤ PDF & VCE
HOTCisco 400-201 Dumps ➤ PDF & VCE
HOTCisco 400-051 Dumps ➤ PDF & VCE
HOTCisco 350-018 Dumps ➤ PDF & VCE
HOTCisco 642-035 Dumps ➤ PDF & VCE

Hottest CompTIA Exam Dumps

HOTSY0-401 Dumps ➤ PDF & VCE
HOTN10-006 Dumps ➤ PDF & VCE
HOT220-901 Dumps ➤ PDF & VCE
HOT220-902 Dumps ➤ PDF & VCE
HOTSG0-001 Dumps ➤ PDF & VCE
HOTCAS-002 Dumps ➤ PDF & VCE
HOTSK0-004 Dumps ➤ PDF & VCE

Other Hottest Exam Dumps

HOTVMware VCP550 Dumps ➤ PDF & VCE
HOTVMware VCP550D Dumps ➤ PDF & VCE
HOTVMware 1V0-601 Dumps ➤ PDF & VCE
HOTVMware 2V0-620 Dumps ➤ PDF & VCE
HOTVCP5-DCV Dumps ➤ PDF & VCE
HOTISC CISSP Dumps ➤ PDF & VCE
HOTPMI PMP Dumps ➤ PDF & VCE
HOTOracle 1Z0-051 Dumps ➤ PDF & VCE
HOTOracle 1Z0-052 Dumps ➤ PDF & VCE
HOTOracle 1Z0-060 Dumps ➤ PDF & VCE
HOTOracle 1Z0-061 Dumps ➤ PDF & VCE
HOTCitrix 1Y0-201 Dumps ➤ PDF & VCE
HOTCitrix 1Y0-301 Dumps ➤ PDF & VCE
HOTCitrix 1Y0-401 Dumps ➤ PDF & VCE
HOT312-50v9 Dumps ➤ PDF & VCE
HOTRHCSA EX200 Dumps ➤ PDF & VCE
HOTRHCE EX300 Dumps ➤ PDF & VCE

Archives

Tags

100-105 exam dumps 200-125 braindumps 200-125 exam dumps 200-125 exam question 200-125 pdf dumps 200-125 practice test 200-125 study guide 200-125 vce dumps 200-355 braindumps 200-355 exam dumps 200-355 exam question 200-355 pdf dumps 200-355 practice test 200-355 study guide 200-355 vce dumps 220-901 braindumps 220-901 exam dumps 220-901 exam question 220-901 pdf dumps 220-901 practice test 220-901 study guide 220-901 vce dumps 300-101 braindumps 300-101 exam dumps 300-101 exam question 300-101 pdf dumps 300-101 practice test 300-101 study guide 300-101 vce dumps 400-101 braindumps 400-101 exam dumps 400-101 exam question 400-101 pdf dumps 400-101 practice test 400-101 study guide 400-101 vce dumps 400-251 braindumps 400-251 exam dumps 400-251 exam question 400-251 pdf dumps 400-251 practice test 400-251 study guide 400-251 vce dumps Lead2pass 220-901 Lead2pass 400-101