Chapter 9

Question 1

What is the primary learning objective for Microsoft Windows Network Security?

Answer 1

Implement security controls to protect Microsoft Windows systems and networks.

Question 2

What are the three main types of vulnerabilities to secure in a Microsoft Windows network?

Answer 2

• Physical and logical access
• Traffic flow
• Computer and device security

Question 3

Define a Local Area Network (LAN).

Answer 3

A LAN covers a small physical area, such as an office or building.

Question 4

What does a Metropolitan Area Network (MAN) connect?

Answer 4

Two or more LANs but does not span an area larger than a city or town.

Question 5

What is the purpose of a Wide Area Network (WAN)?

Answer 5

Connect multiple LANs and WANs and span very large areas.

Question 6

List the types of network security controls.

Answer 6

• Access controls for protected resources
• Communication controls
• Anti-malware software
• Recovery plans
• Configuration management software
• Monitoring tools
• Software patch management

Question 7

Fill in the blank: A collection of computers and devices joined by connection media is called a _______.

Answer 7

[network]

Question 8

What is the function of a firewall in network security?

Answer 8

Filters network traffic to block suspicious packets or messages.

Question 9

What is the role of a router in a network?

Answer 9

Connects two or more separate networks and inspects address portions of packets.

Question 10

True or False: A switch can help avoid collision and congestion issues in networks.

Answer 10

True

Question 11

What type of cable is the most common for network connections?

Answer 11

Unshielded twisted pair (UTP)

Question 12

What is a Network File Server?

Answer 12

A computer or hardware device that provides secure access to its stored data for remote users.

Question 13

What are the advantages of using an application server?

Answer 13

• Software does not need to be installed on every user’s computer
• Easier software updates
• Faster response time due to proximity to database servers
• More data stays inside the organization’s secure network

Question 14

Fill in the blank: The protocol that allows encrypted remote system administration is called _______.

Answer 14

[Secure Shell (SSH)]

Question 15

What is IPSec used for?

Answer 15

To secure IP communication by encrypting each IP packet.

Question 16

What does the term ‘Demilitarized Zone (DMZ)’ refer to in network security?

Answer 16

An untrusted network with servers accessible to unauthorized users without compromising the trusted network.

Question 17

List at least two common wired network connection types.

Answer 17

• Shielded twisted pair (STP)
• Fiber optic cable

Question 18

What is the maximum transmission speed of the 802.11ac wireless protocol?

Answer 18

1.3 Gbps

Question 19

True or False: Telnet is considered a secure protocol for remote administration.

Answer 19

False

Question 20

What should be done before enabling any service in a secure environment?

Answer 20

Develop a plan for keeping the service up to date.

Question 21

What is the main purpose of a network print server?

Answer 21

To provide the interface between computers and printers connected to the network.

Question 22

Fill in the blank: Services should run as a user with the _______ necessary to perform their functions.

Answer 22

[minimum privileges]

Question 23

What does a gateway do in a network?

Answer 23

Connects two or more separate networks using different protocols.

Question 24

What are the layers defined in the OSI Reference Model?

Answer 24

Multiple layers of protocol rules for communication across a network.

Question 25

What is the primary role of configuration management software?

Answer 25

To control network device configuration changes.

Question 26

What does the term 'connection media' refer to?

Answer 26

The physical means used to connect computers and devices in a network.

Question 27

What is the potential risk of a computer without proper security controls?

Answer 27

It poses a threat to the entire network.

Question 28

What user account does Windows run every program as?

Answer 28

A specific user.

Question 29

By default, many services in Windows run as what type of account?

Answer 29

A local admin account.

Question 30

What is a potential risk if an attacker compromises a service?

Answer 30

The attacker could assume the identity of the user running the service.

Question 31

What should you do to secure a Windows service?

Answer 31

Run each service as a user that possesses the minimum privileges necessary.

Question 32

What is the best way to secure a specific service?

Answer 32

Disable or even remove it.

Question 33

What should be done if a service is not needed?

Answer 33

* Stop it. * Disable it. * Remove it.

Question 34

What encryption methods should be used for securing Windows wireless networking?

Answer 34

* WPA * WPA2 * WPA3

Question 35

What is a recommended practice to limit outside eavesdropping on wireless networks?

Answer 35

Disable service set identifier (SSID) broadcast.

Question 36

What is the principle of least privilege?

Answer 36

Grant minimal rights and permissions to users.

Question 37

What should be done to protect workstations from unauthorized access?

Answer 37

* Train users on strong passwords. * Require unique user accounts. * Audit failed access attempts.

Question 38

What happens after five failed logon attempts?

Answer 38

Account lockout should be enabled.

Question 39

What should be done immediately after termination of employment?

Answer 39

Remove user access.

Question 40

What type of software should all workstations have installed?

Answer 40

Anti-malware software.

Question 41

How often should workstations be proactively scanned for malware?

Answer 41

At least weekly.

Question 42

What does outbound traffic filtering help protect against?

Answer 42

Denial of service (DoS) and distributed denial of service (DDoS) attacks.

Question 43

What authentication method does Windows use by default?

Answer 43

Kerberos.

Question 44

What should be carefully examined for unnecessary services?

Answer 44

Each server’s role.

Question 45

What should be updated frequently on Windows servers?

Answer 45

Antivirus and antispyware software.

Question 46

What do stand-alone firewalls do?

Answer 46

Process firewall rules and forward only approved traffic.

Question 47

What is a disadvantage of stand-alone firewalls?

Answer 47

Additional administrative workload.

Question 48

What is a key feature of IPv6 in relation to IPv4?

Answer 48

End-to-end encryption using IPSec.

Question 49

What should you ensure your cloud service provider supports?

Answer 49

The level of anti-malware required in your internal network.

Question 50

What is the purpose of Microsoft Defender for Cloud?

Answer 50

Provides a security score from consistent assessments.

Question 51

What does Azure Access Control IAM provide?

Answer 51

Another level of access control to cloud properties.

Question 52

What should be set for compliance across an environment in Microsoft Defender for Cloud?

Answer 52

A security policy.

Question 53

What should you do to protect sensitive data at rest?

Answer 53

Use encryption.

Question 54

What should be enforced for user accounts?

Answer 54

Strong passwords.

Question 55

What should be done about suspicious traffic?

Answer 55

Establish firewall rules and deny it.

Question 56

What should be done with unused services?

Answer 56

Disable or uninstall them.

Question 57

What is a best practice regarding public networks?

Answer 57

Avoid connecting to them.