Refresher - Section II (Security) Flashcards
After switching an office to a Windows domain, trouble when it comes to saving files in redundant network shares showed. Users want to work out of a local Documents folder on their profile, what do you implement to get data to reside on network shares?
Folder redirection; it changes the target of a personal folder to a file share.
What protocol allows access points to use RADIUS or TACACS+ and EAP to tunnel credentials and tokens that allow a domain user to connect via a wireless client to authenticate to a Windows domain controller and use SSO authorization?
Kerberos, a SSO authentication and authorization service based on a time sensitive ticket-granting system allows a user account to authenticate to a Windows domain controller.
Mechanism used in the first version of WPA to improve the security of wireless encryption mechanisms, compared to the flawed WEP standard.
TKIP
Legacy security algorithm for 802.11 wireless networks and is highly vulnerable to attacks
WEP (Wired Equivalent Privacy)
a symmetric bit block cipher used for bulk encryption modern security standards WPA2, WPA3, and Transport Layer Security (TLS) which replaced RC4 starting with WPA2
AES (Advanced Encryption Standard)
What cipher replaced Rivest Cipher 4 (RC4) at the advent of WPA2?
Advanced Encryption Standard (AES)
A medium sized office is growing and x employees need access to the wireless network. Each employee has a domain account and wireless network access account. What protocol would allow users to use one account granting access to the wireless network and the domain?
Kerberos
Which is the next generation of wireless data security intended to replace WPA2 by using AES (AES) Galois Counter Mode Protocol (GCMP) mode of operation?
WPA3
What does Cipher Block Chaining Message Authentication Code Protocol (CCMP) replace?
TKIP
What would provide a stronger encryption to secure a home office, with AES and CCMP?
WPA2
A secure AAA protocol for authenticating and administrating all company Cisco routers, switches, and access points?
TACACAS+ (Terminal Access Controller Access Control System Plus) developed by Cisco to authenticate to administrator accounts for network appliance management
AAA protocol used to mange remote and wireless authentication infrastructure; used mainly for wireless and virtual private network access.
RADIUS (Remote Authentication Dial-In User Service)
Coffe shop provides secure, free Wi-Fi without using a pre-shared passphrase. Which protected access meets this requirement?
WPA3
Which protected access was created to fix vulnerabilities in the earlier Wired Equivalency Privacy (WEP) standard.
WPA
Client implements a Windows domain and is building out an AD structure and want to manage access to wireless network using permissions in the new domain. What protocol makes this achievable?
EAP; Extensinle Authentication Protocol allows different mechanism to authenticate against a network directory and would be the foundation of managing Wi-Fi access based on Active Directory user objects.
