Chapter 4 Identity and Account Management Flashcards
What is identity management in IT security?
Identity management involves processes like authentication and authorization to ensure that only authorized users have access to network resources.
What are the three parts of authentication?
Identification, Authentication, and Authorization.
What is the role of identification in authentication?
Identification involves identifying the user, typically through a username.
What is authentication in the context of IT security?
Authentication is the process of verifying a user’s identity, usually through a password or other credential.
What does authorization determine?
Authorization determines what actions or resources an authenticated user is allowed to access.
What is an example of identification in a theater ticket scenario?
Using a driver’s license or a confirmation number to prove identity when picking up tickets.
What is multi-factor authentication (MFA)?
MFA uses more than one factor or attribute to authenticate a user, making it more secure.
What are the three main factors in multi-factor authentication?
Something you know (password), something you have (smart card), and something you are (fingerprint).
What is an example of “something you know” in MFA?
A password or a PIN code.
What is an example of “something you have” in MFA?
A smart card or an RSA token.
What is an example of “something you are” in MFA?
Biometric data like a fingerprint or facial recognition.
What are attributes in the context of MFA?
Attributes are specific factors used in MFA, such as something you can do (signature), something you exhibit (typing speed), someone you know (trust), and somewhere you are (location).
How is “somewhere you are” used in authentication?
Location-based authentication, such as using a credit card zip code verification at a gas station.
What is the importance of multi-factor authentication in identity management?
MFA enhances security by requiring multiple forms of verification, making it harder for unauthorized users to gain access.
Why is understanding MFA important for the Security+ exam?
MFA is a critical concept in IT security, and understanding its factors and attributes is essential for passing the Security+ exam.
What can be a sign of a bad actor having access to your password?
Unusual login attempts from different locations or unexpected changes in account settings.
What is a practical example of “someone you know” in authentication?
Trusting a server’s certificate issued by a known and trusted Certificate Authority like VeriSign.
How does “something you exhibit” work in authentication?
Using behavioral attributes like typing speed as part of the authentication process.
What are the four components of identity management in IT security?
Identification, Authentication, Authorization, and Accounting.
What is accounting in the context of identity management?
Accounting, also known as auditing, involves tracking and recording the activities of authenticated users to ensure accountability.
How does multi-factor authentication (MFA) relate to identification?
MFA strengthens identification by requiring additional factors beyond just a username to verify a user’s identity.
How does authorization work after successful authentication?
Authorization determines the permissions and access rights a user has once they have been successfully authenticated.
What is the first step to enable MFA for a Microsoft Azure user account?
Open the Microsoft Azure portal and navigate to Azure Active Directory.
How do you access user accounts in Azure Active Directory?
Click on “Users” in the left-hand navigator to see a list of user accounts created in Azure AD.
What is the difference between “enabled” and “enforced” MFA in Azure AD?
Enabled” means MFA is turned on but not actively used by the user yet. “Enforced” means the user has signed in using MFA.
What happens the first time a user signs in after MFA is enabled?
The user is prompted to provide additional authentication details, such as setting up the Microsoft Authenticator app or receiving an SMS code.
What are the two methods a user can choose for the second factor in MFA during sign-in?
The Microsoft Authenticator app or receiving an SMS text message with a code.
How does receiving an SMS code for MFA work?
The user provides their phone number, receives a six-digit code via SMS, and enters the code during sign-in to authenticate.
What is multi-factor authentication (MFA)?
MFA is a security process that requires more than one method of authentication from independent categories of credentials to verify the user’s identity.
What does “something you know” refer to in MFA?
Something you know” refers to information like a password or PIN.
What does “something you have” refer to in MFA?
Something you have” refers to physical objects like a smartphone, smart card, or RSA token
What does “something you are” refer to in MFA?
Something you are” refers to biometric attributes like fingerprints or facial recognition.
How does MFA improve security compared to single-factor authentication?
MFA improves security by requiring multiple forms of verification, making it more difficult for unauthorized users to gain access.
How does accounting enhance security in identity management?
Accounting enhances security by providing a record of user activities, which can be audited to detect and respond to suspicious behavior.