Domain 4: Review Questions

Question 1

Which motion detection system has a reflective panel to create zones of detection?

A. Microwave

B. Vibration

C. Passive infrared (PIR)

D. Seismic

Answer 1

C. Passive infrared (PIR)

Question 2

You need to deply a surveillance camera in an area that requires you to record the equipment the entire time it has entered you datacenter to the time it is installed. Which type of surveillance camera should you deploy?

A. CCTV

B. PTZ

C. Coaxial

D. POE

Answer 2

B. PTZ

Question 3

You work for a library and require an asset tracking system that is inexpensive and will notify you when equipment leaves the building. Which type of system should you purchase and deploy?

A. Bluetooth

B. Passive RFID

C. 802.11 asset tracking

D. Active RFID

Answer 3

B. Passive RFID

Question 4

You require a physical security system that authenticates and authorizes employees into an area. Which system should you implement?

A. Key fobs

B. ID badges

C. Biometrics

D. Combination locks

Answer 4

C. Biometrics

Question 5

Which is a physical authentication system that requires both a personal identification number (PIN) and physical card?

A. Key fobs

B. Biometrics

C. RFID

D. Smart cards

Answer 5

D. Smart cards

Question 6

Which principle describes the process of verification of a user’s identity?

A. Authentication

B. Aurhorization

C. Accounting

D. Auditing

Answer 6

A. Authentication

Question 7

Which authentication system is an open standard originally proposed by the Internet Engineer Task Force (IETF)?

A. RADIUS

B. TACACS+

C. Kerberos

D. LDAP

Answer 7

A. RADIUS

Question 8

Which authentication system can use Advanced Encryption Standard (AES) encryption for encryption of user credentials?

A. RADIUS

B. TACACS+

C. Kerberos

D. LDAP

Answer 8

C. Kerberos

Question 9

Which protocol is often used with single sign-on (SSO) to exchange credentials?

A. LDAP

B. SAML

C. ADFS

D. Kerberos

Answer 9

B. SAML

Question 10

Which principle describes the process of verification of a user’s permissions?

A. Authentication

B. Authorization

C. Accounting

D. Auditing

Answer 10

B. Authorization

Question 11

What protocol and port number does LDAP use for directory lookups?

A. TCP/389

B. TCP/1812

C. UDP/389

D. UDP/1812

Answer 11

A. TCP/389

Question 12

Which authentication factor is an example of personal human characteristic?

A. Typing your password

B. A location you are in

C. A smartcard and you PIN

D. Your voice

Answer 12

D. Your voice

Question 13

Which authentication factor is an example of somewhere you are?

A. Your IP address

B. An RFID tag

C. Your MAC address

D. Your picture

Answer 13

A. Your IP address

Question 14

Which Cisco proprietary protocol is used to transmit credentials for 802.1x authentication systems?

A. LEAP

B. EAP

C. PEAP

D. NAC

Answer 14

A. LEAP

Question 15

What is the proper terminology for a switch or wireless access point (WAP), when 802.1x is implemented?

A. Authenticating server

B. Authenticator

C. Supplicant

D. Authorizer

Answer 15

B. Authenticator

Question 16

You need to restrict a switch port to a maximum of two devices. What should you implement to gaurantee only two devices can communicate on the switch port?

A. NAC

B. 802.1x

C. ACLs

D. Port security

Answer 16

D. Port security

Question 17

You are implementing a public guest wireless network and require that users accept and aceptable use policy (AUP). What should you implement to accomplish the goal?

A. ACLs

B. MAC filtering

C. Captive portal

D. 802.1x

Answer 17

C. Captive portal

Question 18

Which wireless protocol introduced message integrity checks (MIC) and Temporal Key Integrity Protocol (TKIP)?

A. WPA

B. WEP

C. WPA2

D. CBC

Answer 18

A. WPA

Question 19

You are implementing a wireless network and need to make sure that only hosts that have up-to-date antivirus protection can join. Which technology should you implement?

A. NAC

B. 802.1x

C. EAP-TLS

D. ACLs

Answer 19

A. NAC

Question 20

Which network attack involves malicious code that is dormant until specific conditions are met?

A. Evil twin

B. Logic bomb

C. Spoofing

D. Deauthentication

Answer 20

B. Logic bomb

Question 21

Which statement accurately describes an exploit?

A. A known weakness in the operating system

B. A configuration that weakens the security of the operating system

C. A known operating system security flaw

D. A technique to gain unauthorized access

Answer 21

D. A technique to gain unauthorized access

Question 22

Which algorithm is commonly used with file hash techniques?

A. RC4

B. MD5

C. HMAC

D. AES

Answer 22

B. MD5

Question 23

Which attack involves the attacker impersonating both side of a conversation between two hosts?

A. MitM

B. Deauthentication

C. DoS

D. Spoofing

Answer 23

A. MitM

Question 24

Which console-based management protocol has built-in security?

A. SSH

B. SCP

C. HTTPS

D. FTP

Answer 24

A. SSH

Question 25

Which mitigation technique is configured on user-facing switch ports to protect the Spanning Tree Protocol (STP)?

A. Flood guard

B. Root Guard

C. DHCP snooping

D. BPDU Guard

Answer 25

D. BPDU Guard