Identity and Access Management

Question 1

NTFS file permissions

Answer 1

full control
modigy
read and execute
read
write
special permissions

Question 2

ACL

-List of information to handle how everyone is given access

Answer 2

Access Control List

Question 3

Federated Sytstem

Answer 3

System that is trusted by the domain

Question 4

Samba

Answer 4

Allows Linux machines to use Active Directory

Question 5

KDC

-Windows Domain Controller is known as KDC

Answer 5

Key Distribution Center

Question 6

PIV card

-Picture and Identification information

Answer 6

Personal Identity Verification card

Question 7

Windows File Permissions

-moving files on same hard drive to a new location what happens to permissions?

Answer 7

Keeps permissions

Question 8

Linux File Permissions

Answer 8

D RWX RWX RWX

• Directory
• Owner
• Group
• Everyone

Question 9

Multifactor Authentication

Answer 9

Using more than one authentication factor

ex: finger print and password

Question 10

Linux command for editing permissions

Answer 10

chmod
O= everyone (stands for other)
G= group
A= all 3 catergories

Question 11

Kerberos

Answer 11

Authentication protocol used to authenticate to windows domain controller
-Uses port 88

Question 12

NTFS folder permissions

Answer 12

full control
modigy
read and execute
list folder content
read
write
special permissions

Question 13

PAP

• Sends username and password in the clear
• Not used very often anymore

Answer 13

Password Authentication Protocol

Question 14

Implicit Deny

Answer 14

Always denies unless told otherwise

Question 15

AAA

Answer 15

Authentication
Authorization
Accounting

Question 16

CHAP

• Uses a hash value to authenticate
• Sends the hash to whoever is trying to get authenticated as the challenge - they have to recreate the hash using the same shared key and send back as proof

Answer 16

Challenge-Handshake Authentication Protocol

Question 17

SAML

• Used for web applications
• Single Sign-On allows access between an identity provider and a service provider

Answer 17

Security Assertion Markup Language

Question 18

Linux permissions (numbers = permissions)

Answer 18

0 = ---
1 = --x
2 = -w-
3 = -wx
4 = r--
5 = r-x
6 = rw-
7 = rwx

Question 19

File system that doesn’t support windows permissions

Answer 19

Fat32

Question 20

Linux command for changing owner

Answer 20

sudo chown

Question 21

Windows system for passwords and general management

-Usually for that particular local machine

Answer 21

Local Security Policy

Question 22

RBAC

• Most common
• Access to resources is defined by your role

Answer 22

Role-Based Access Control

Question 23

Windows File Permissions

-copying files from drive letter to another drive letter on the same hard drive what happens to permissions?

Answer 23

Loses permissions

Question 24

Rights and Privileges

Answer 24

Mostly used for system function access

Question 25

MAC

-Labels “top secret”

Answer 25

Mandatory Access Control

Question 26

TGT

-Shows that you’re authenticated to domain

Answer 26

Ticket Granting Ticket

Question 27

TACACS+

• Decouples the authorization from the authentication
• Uses TCP port 49

Answer 27

Terminal Access Controller Access-Control System Plus

Question 28

LDAP

• Used to access other directories/resources
• More of a language than authentication protocol

Answer 28

Lightweight Directory Access Protocol

-Uses TCP and UDP port 389

Question 29

RADIUS
-Used in wireless authentication
-Can use ports:
1812
1813
1645
1646

Answer 29

Remote Authentication Dial-In User Service

Question 30

RSA Key

Answer 30

Software/key that stores a secret code that changes every so often - “something you have”

Question 31

Authorization

Answer 31

What rights you have to the system once you’ve been authenticated

Question 32

CAC card

-Picture and Identification

Answer 32

Common Access Card

Question 33

Least Privilege

Answer 33

Always give the least amount of privilege to users for them to do their job

Question 34

RADIUS client

Answer 34

Gateway for server and user

Question 35

NTLM

• Like CHAP but both ways
• Client and server each challenge the other side with a hash value

Answer 35

NT Lan Manager

Question 36

HOTP

-fob creates single use code using key and counter

Answer 36

HMAC-based One-Time Password algorithm

Question 37

Identification

Answer 37

Proves who you are to the authenticating system

Question 38

Group Policy Objects Management

Answer 38

Found in Active Directory

Can be applied to domains/individual sites/groups

Question 39

What are the 5 Authentication Factors

Answer 39

1. Something you know - password
2. Something you have - smartcard/key fob
3. Something about you - retinal scanners
4. Something you do - rhythm of typing can be used
5. Somewhere you are - geography/zip code getting gas

Question 40

RADIUS server

Answer 40

Holds or has access to passwords/usernames

Question 41

Authentication

Answer 41

Proving you have the rights to that system

ex: password

Question 42

Windows File Permissions

-copying files from drive to another drive what happens to permissions?

Answer 42

Loses permissions

Question 43

Linux command for changing password

Answer 43

sudo passwd

Question 44

Inheritance

Answer 44

When you give a folder permissions, anything created in that folder will have mirrored permissions with options greyed out

Question 45

Permissions

Answer 45

Usually handled in groups for organizations - more used for files and resources

Question 46

RADIUS supplicant

Answer 46

Person or system trying to get authenticated

Question 47

Captcha

Answer 47

Used on websites - wonky lettering or pictures you have to identify to prove you’re not a bot - “something you know”

Question 48

DAC

-Whoever created data defines access

Answer 48

Discretionary Access Control

Question 49

TOTP

-fob creates single use code using key and time of day

Answer 49

Time-based One-Time Password algorithm