quiz 8

Question 1

Authentication is when a person’s identity is confirmed through the use of a specific system.

Answer 1

True—Authentication is when a person’s identity is confirmed or verified through the use of a specific system.

Question 2

Authorization is when a person is in a state of being identified.

Answer 2

False—Authorization is when a user is given permission to access certain resources. Identification is when a person is in a state of being identified.

Question 3

A smart card is an example of something a user knows.

Answer 3

. False—A smart card would be an example of something a user has. A password would be an example of something a user knows.

Question 4

Identity proofing is an initial validation of an identity.

Answer 4

True—Identity proofing is an initial validation of an identity—for example, when people shows their ID.

Question 5

An older type of door access system might use a proximity sensor.

Answer 5

True—Proximity sensors are used in many door access systems, although they are less secure than other available technologies.

Question 6

Biometrics is an example of a logical authentication system.

Answer 6

False—Biometrics is the science of recognizing humans based on one or more physical characteristics. An example of a logical authentication system would be Kerberos.

Question 7

Multifactor authentication is when a user can log in once and gain access to multiple
systems.

Answer 7

False—Multifactor authentication is when two or more types of authentication are used when dealing with a user attempting to access a system. Single sign-on is when a user can log in once yet gain access to multiple systems.

Question 8

A false positive is when a system authenticates a user who should not be allowed to access that system.

Answer 8

True—A false positive is an authentication failure that enables a user access who should not be allowed to get in.

Question 9

. In an 802.1X connection, the authenticator is software running on a workstation.

Answer 9

False—Software running on the workstation would be known as a supplicant. The authenticator is usually a wireless access point or switch.

Question 10

Cisco created a proprietary version of EAP called LEAP.

Answer 10

True—Cisco created LEAP (lightweight EAP), which is proprietary.

Question 11

Which of the following uses a two-way authentication system known as mutual authentication? 
A. LDAP 
B. Kerberos 
C. RADIUS 
D. 802.1X

Answer 11

B. Kerberos is an authentication protocol used in client/server environments, where each verifies the other’s identity, known as mutual authentication.

Question 12

Which of the following commands enables you to synchronize a client’s time to a domain controller? 
A. net time 
B. netstat –an 
C. net stop 
D. sc config

Answer 12

A. Net time is the command you would use to synchronize time on a client computer to a domain controller.

Question 13

Which port does terminal services use? 
A. 1812 
B. 389 
C. 3389 
D. 1813

Answer 13

C. Terminal services uses Port 3389. RADIUS uses Port 1812 and 1813. LDAP uses Port 389.

Question 14

Which of the following is the most secure? 
A. PAP 
B. CHAP 
C. MS-CHAP 
D. MS-CHAP2

Answer 14

D. MS-CHAP2 is the most secure authentication protocol listed. PAP is not secure at all because it sends passwords in clear text.

Question 15

Which of the following are commonly used in VPN tunneling protocols? (Select the two best answers.) 
A. PPP 
B. PPTP 
C. TACACS 
D. L2TP

Answer 15

B and D. PPTP and L2TP are commonly used in VPN tunneling protocols.

Question 16

Which of the following authentication methods is used more commonly on UNIX networks? 
A. 802.1X 
B. TACACS 
C. RADIUS 
D. Kerberos

Answer 16

B. TACACS (Terminal Access Controller Access Control System) is more commonly found in UNIX networks; it is considered more reliable than RADIUS.

Question 17

Which of the following is described as "when a person's identity is confirmed or verified through the use of a specific system"? 
A. Identification 
B. Authorization 
C. Authentication 
D. Access control

Answer 17

C. Authentication is when a person’s identity is confirmed or verified through the use of a specific system.

Question 18

Which of the following would fall into the category of something the user is? 
A. Password 
B. Smartcard 
C. Signature 
D. Thumbprint

Answer 18

D. A thumbprint would be an example of something the user is; it is one example of biometrics.

Question 19

You are installing a video monitoring system for your organization. You do not want any outside people to view the video. What is the best solution? 
A. CCTV 
B. IP-based video cameras 
C. Motion detectors 
D. WebCam

Answer 19

A. CCTV (closed circuit television) is the best solution if you don’t want anyone else to view your video.

Question 20

Which of the following is when two or more types of authentication are used when dealing with access control? 
A. Single sign-on 
B. False positive 
C. Multifactor authentication
D. Username and password

Answer 20

C. Multifactor authentication is when two or more types of authentication are used when dealing with user access control—for example, if a person needs to use a username and password and swipes a smart card.