Chapter 5: Identity & Access Management Flashcards
An access control model that focuses on subjects & identifies the objects that each subject can access is a(n)…?
A capability table.
Order these steps:
1. Client/Server Ticket
2. TGT Ticket
3. Client/TGS Ticket
4. User Accesses Service
5. User Provides Auth Credentials
5,3,2,1,4
What is a Shortcut Trust ?
A transitive trust within a forest, created to shorten the trust path in a large and complex domain structure.
What is a Forest Trust ?
A forest trust allows administrators to connect two AD DS forests with a single trust relationship.
What is a Realm Trust ?
A trust between a domain or a forest with another domain or a forest that is not based on Windows Active Directory.
Differentiate TACACS, TACACS+, & XTACACS.
- TACACS combines authentication & authorization.
- XTACACS separates authN, authZ, and auditing.
- TACACS+ is XTACACS with extended two-factor user authN.
What is ADFS ?
Active Directory Federation Services, a Microsoft software component that allows users to access applications and systems across organizational boundaries using single sign-on (SSO).
What encryption is used during Kerberos login process?
AES
Mandatory Access Control is based on what type of model?
Lattice-based
Biba is what type of Access Control Model?
MAC (Mandatory Access Control)
What type of Access Control best describes NAC’s posture assessment capability?
A risk-based access control.
What type of Access Control uses a table or matrix to map out access privileges?
Mandatory Access Control
Which of these are common web application session management techniques?
1. IP Tracking
2. Cookies
3. URL rewriting
4. TLS tokens
2, 3
What is SPML ?
Service Provisioning Markup Language
RADIUS supports TLS over…?
TCP
