MISC

Question 1

In AD, Kerberos does what?

Answer 1

network authentication

Question 2

CIA stands for?

Answer 2

Confidentiality
Integrity
Availability

Question 3

AAA stands for?

Answer 3

Authentication
Authorization
Accounting/Auditing

Question 4

3 AD group types?

Answer 4

Domain Local
Global
Universal

Question 5

TKIP stands for?

Answer 5

Temporal Key Integrity Protocol

encryption

Question 6

WPA stands for?

Answer 6

Wi-Fi Protected Access

Question 7

IV stands for?

Answer 7

Initializing Vector

encryption

Question 8

AES stands for?

Answer 8

Advanced Encryption Standard

Question 9

AES (Advanced Encryption Standard) is used in what type of encrypting standard?

Answer 9

WPA2

Question 10

WPA2 stands for?

Answer 10

Wi-Fi Protected Access 2

Question 11

PKI stands for?

Answer 11

Public Key Infrastructure

Question 12

PKI (Public Key Infrastructure) does?

Answer 12

certificate encryption

Question 13

DNSSEC stands for?

Answer 13

Domain Name system Security Extensions

Question 14

WUA stands for?

Answer 14

Windows Update Agent

Question 15

WUA (Windows Update Agent) does?

Answer 15

Controls updates for individual clients

Question 16

NAP stands for?

Answer 16

Network Access Protection

Question 17

NAP (Network Access Protection) does?

Answer 17

enforces client configuration compliance

Question 18

5 classes of firewall?

Answer 18

Class 1 - Personal firewall
Class 2 - Router firewall
Class 3 - Low end hardware firewall
Class 4 - High end hardware firewall
Class 5 - High end server firewall

Question 19

HRA stands for?

Answer 19

Health Registration Authority

Question 20

NPS stands for?

Answer 20

Network Policy Service

Question 21

TLS stands for?

Answer 21

Transport Layer Security

Question 22

TLS (Transport Layer Security) does?

Answer 22

current extension of SSL encryption

Question 23

2 mail encryptions are?

Answer 23

Pretty Good Privacy (PGP)

Secure/Multipurpose Internet Mail Extensions (S/MIME)

Question 24

S/MIME stands for?

Answer 24

Secure/Multipurpose Internet Mail Extensions

Question 25

PGP encrypts how?

Answer 25

public & session keys

Question 26

S/MIME does?

Answer 26

embeds objects

Question 27

4 types of VPN tunneling protocols?

Answer 27

PPTP
L2TP
SSTP
IKEv2

Question 28

PPTP stands for?

Answer 28

Point to Point tunneling Protocol

Question 29

L2TP stands for?

Answer 29

Layer 2 Tunneling Protocol

Question 30

SSTP stands for?

Answer 30

Secure Sockets Tunneling Protocol

Question 31

IKEv2 stands for?

Answer 31

Internet Key Exchange version 2

Question 32

Which VPN tunneling protocol has old, weak encryption?

Answer 32

PPTP

Question 33

Which VPN tunneling protocol supports VPN Reconnect?

Answer 33

IKEv2

Question 34

Which VPN tunneling protocol is industry standard?

Answer 34

L2TP

Question 35

4 types of VPN authentication forms?

Answer 35

PAP
CHAP
MS-CHAPv2
EAP-MS-CHAPv2

Question 36

PAP stands for?

Answer 36

Password Authentication Protocol

Question 37

CHAP stands for?

Answer 37

Challenge Handshake Authentication Protocol

Question 38

MS-CHAPv2 stands for?

Answer 38

Microsoft CHAP version 2

Question 39

EAP-MS-CHAPv2 stands for?

Answer 39

Extensible Authentication Protocol Microsoft CHAP version2

Question 40

Which VPN authentication form can authenticate, via biometrics and “what you have?”

Answer 40

EAP-MS-CHAPv2

Question 41

Which VPN authentication form uses plaintext and is not recommended?

Answer 41

PAP

Question 42

What is the best symmetric encryption?

Answer 42

AES

Question 43

5 types of symmetric encryption?

Answer 43

Block ciphers
DES
3DES
AES
Stream cipher

Question 44

Block cipher symmetric encryption works how?

Answer 44

plaintext with a key

Question 45

DES symmetric encryption has how many bits?

Answer 45

56 bits

Question 46

Which symmetric encryption is less vulnerable than DES?

Answer 46

3DES encryption

Question 47

Stream cipher symmetric encryption works how?

Answer 47

bit-by-bit

Question 48

DES stands for?

Answer 48

Data Encryption Standard

Question 49

AES stands for?

Answer 49

Advanced Encryption Standard

Question 50

4 types of asymmetric encryption?

Answer 50

SSL
TLS
PGP
Hash function

Question 51

TLS stands for?

Answer 51

Transport Layer Security

encryption

Question 52

PGP stands for?

Answer 52

Pretty Good Privacy

encryption

Question 53

Hash function asymmetrical encryption works how and used for what?

Answer 53

encrypts one way, with no decryption

verifies passwords

Question 54

types of certificate formats?

Answer 54

PKCS #12
PKCS #7
DER
Base-64 encoded X.509

Question 55

PKCS #12 certificates do?

Answer 55

archive files

Question 56

PKCS #7 certificates do?

Answer 56

stores certificates

Question 57

Base-64 encoded X.509 certificates do?

Answer 57

stores single certificate but no pvt key

Question 58

PKI stands for?

Answer 58

Public Key Infrastructure

Question 59

PKI does?

Answer 59

digital certificate system

Question 60

2 types of CA?

Answer 60

Enterprise Root CA

Stand-alone CA

Question 61

Enterprise Root CA does what?

Answer 61

top of CA hierarchy

Question 62

Stand-alone CA does not do what 2 things?

Answer 62

use AD

automatically enroll visitors

Question 63

RA stands for?

Answer 63

Registration Authority

Question 64

RA does?

Answer 64

distributes keys

Question 65

CRL stands for?

Answer 65

Certificate Revocation List

Question 66

Device Guard is and does?

Answer 66

lockdown device using code integrity policies to only run trusted apps

Question 67

A changing virus is called what?

Answer 67

polymorphic

Question 68

When an administrator grants permissions on a folder to a group, which three permission levels are assigned by default?

Answer 68

Read
Read & execute
List folder contents

Question 69

Which two permission levels are available to assign to a user or group when creating a basic share on a folder?

Answer 69

Read

Write

Question 70

Which registry hive stores file associations?

Answer 70

HKEY_CLASSES_ROOT

Question 71

On which Group Policy path will an administrator find the Account Policies area?

Answer 71

Computer Configuration/Policies/Windows Settings/Security Settings

Question 72

What is used to audit non-Active Directory objects?

Answer 72

Object access

Question 73

Which administrative tool is used to read auditing logs?

Answer 73

Event Viewer

Question 74

Which of these encryption methods uses block ciphers? Choose three answers.

Answer 74

AES
DES
3DES

Question 75

For corporations, what 2 services manage updates?

Answer 75

Windows Server Update Service (WSUS)

System Center Configuration Manager (SCCM)

Question 76

WSUS stands for?

Answer 76

Windows Server Update Service

Question 77

SCCM stands for?

Answer 77

System Center Configuration Manager

Question 78

802.1x uses what server?

Answer 78

RADIUS

Question 79

802.1x does what?

Answer 79

port based network authentication

Question 80

Firewall packet filtering operates at what OSI layer?

Answer 80

Layer 3

Question 81

Firewall circuit filtering operates at what OSI layer?

Answer 81

Layer 5

Question 82

3rd generation firewalls operate at what OSI layer?

Answer 82

Layer 7 (AKA application firewalls/proxy servers)

Question 83

Stateless firewalls filter based on what?

Answer 83

packet: type, port number, source & destination IP

Question 84

Stateful firewalls filter based on what?

Answer 84

everything stateless does and allows return traffic that is part of the OSI Session

Question 85

Distance vector routing does what 2 things?

Answer 85

hop count

split horizon loop prevention

Question 86

Link state routing does what 3 things?

Answer 86

hop count
distance
speed

Question 87

3 types of protocol spoofing

Answer 87

ARP (Address Resolution Protocol) spoofing
DNS (Domain Name System) spoofing
IP Address spoofing

Question 88

ARP (Address Resolution Protocol) spoofing works how?

Answer 88

stealing host IP address and sending its traffic to attacker

Question 89

DNS (Domain Name System) spoofing works how?

Answer 89

redirects web request to incorrect website

Question 90

IP Address spoofing works how?

Answer 90

IP packets attacked and their source forged

Question 91

IPsec protocol, ESP (Encapsulating Security Payload), does?

Answer 91

provides CIA for only IP data

Question 92

ESP stands for?

Answer 92

Encapsulating Security Payload

Question 93

AH stands for?

Answer 93

Athentication Header

Question 94

IPsec protocol AH (Athentication Header) does?

Answer 94

authentication, integrity, and anti-replay for data packets

Question 95

IPsec protocol AH (Athentication Header) does not do?

Answer 95

encryption

Question 96

IPsec protocol IKE (Internet Key Exchange) does?

Answer 96

defines encryption key exchange

Question 97

IKE stands for?

Answer 97

Internet Key Exchange

Question 98

SA stands for?

Answer 98

Security Association

re: IPsec protocol

Question 99

SA (Security Association) does?

Answer 99

rules for VPN connections

Question 100

Which are the two IPsec modes?

Answer 100

Transport Mode

Tunnel Mode