Home > Security Security Schools > Identity and Access Management Security School > Identity and Access Management final exam > Identity and access management final exam
Security Schools: Identity and Access Management Security School:
EMAIL THIS
 START   SSO   DIODATI   COMPLIANCE   ENDPOINT   VPNS   AD   IAM TECH   USERS   NET/SEC INTEG.   EXAM   
Identity and Access Management final exam

<< PREVIOUS | NEXT >>

Identity and access management final exam

16 Aug 2006

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   

1. What two issues does an administrator confront during the account provisioning process?

  1. Ensuring that the process is consistent and as simple as possible
  2. Speeding up the process and making it as consistent as possible
  3. Speeding up the process and making it as simple as possible
  4. Ensuring that the process is consistent and giving the end user as much responsibility for the process as possible

2. What VPN tunneling protocol really consists of three protocols -- AH, ESP and IKE?

  1. L2TP
  2. SSL
  3. IPsec
  4. MPLS

3. Which of the following describes a policy server within an endpoint security solution?

  1. The policy server is generally a RADIUS, Kerberos or 802.1X system.
  2. The policy server is the central point for establishing network access policies.
  3. The policy server is the primary mechanism for the endpoint security workflow.
  4. All of the above.

4. Which of the following includes groups as a schema attribute for individuals and are usually created using an LDAP search URL?

  1. dynamic groups
  2. static groups
  3. None of the above

5. How are organizations addressing the incompatibility of gateway authorization with a large class of applications?

  1. By not using a gateway authorization system at all.
  2. By integrating their application authorization mechanisms with the enterprise identity and access management solution.
  3. By using it only for Web applications.
  4. All of the above.

6. Given the benefits of NAC for regulatory compliance, what would stop you from just implementing it everywhere in your network and getting a leg up on your compliance efforts?

  1. The cost
  2. The maturity of the solutions
  3. It needs to be fully deployed into the network
  4. All of the above

7. Which of the following is critical to avoid establishing VPN tunnels with unauthorized parties?

  1. Authorization
  2. AAA
  3. Availability
  4. Authentication

8. Which of the following defines provisioning?

  1. To distribute
  2. To make available
  3. To assign
  4. To administer

9. Which of the following is the only control mechanism explicitly stated by the FFIEC to be inadequate for high-risk transactions involving access to customer information or the movement of funds to other parties?

  1. biometrics
  2. single-factor authentication
  3. geo-location
  4. shared secrets (passwords and PINs)

10. Which of the following describes the state of endpoint security?

  1. There are a lot of experts in the field.
  2. Solutions have matured.
  3. Many current solutions are proprietary.
  4. Solutions are straightforward to implement.

11. Which of the following is an example of a good identifier?

  1. Birth certificate
  2. Driver's license
  3. Social Security card
  4. Credit card

12. Where will NAC have the most impact on compliance efforts?

  1. Authentication, Access Control and Remediation
  2. Access Control, Policies and Audit
  3. Authentication, Access Control and Audit
  4. Policies, Authentication and Remediation

13. To defeat ID spoofing of IPsec VPN tunnels, you should require proof of claim using an IKE standard authentication method. Which of the following qualifies as an IKE standard authentication method?

  1. PSK
  2. RSA digital signature
  3. DSS digital signature
  4. All of the above

14. Who is required to comply with the FFIEC's authentication mandate?

  1. All financial institutions
  2. All financial institutions engaging in any form of Internet banking
  3. Credit unions engaging in any form of Internet banking
  4. Online merchants

15. What is the best way to future proof your endpoint security investment?

  1. Implement comprehensive processes before buying any product.
  2. Invest in the current leading product.
  3. Go with your gut instincts.
  4. None of the above. It's impossible to future proof anything in information security.

16. What is an active identity?

  1. A person, a service or a system
  2. One that can act or execute
  3. Users or application services
  4. All of the above

17. According to Mike Rothman, from a network standpoint, compliance can be largely represented by five requirements. Which of the following is one of those requirements?

  1. Availability
  2. Authorization
  3. Authentication
  4. Accounting

18. Which VPN tunneling protocol uses a firewall or an RA concentrator as a gateway?

  1. MPLS
  2. PPTP
  3. IPsec
  4. SSL

19. Gateway-oriented access management systems alleviate the problems associated with having Web application developers create access role and access control models because...

  1. Gateway-oriented access management systems allow organizations to use identities from enterprise directories.
  2. Gateway-oriented access management systems support multiple authentication providers.
  3. Gateway-oriented access management systems allow applications to use groups and roles from enterprise authorization services.
  4. All of the above.

20. Which solution requires a security chip, called a Trusted Platform Module, to protect data at the hardware level?

  1. TNC
  2. NAP
  3. NAC
  4. None of the above.

Check your score

  • 15-20 correct: You passed!
  • Less than 15 correct: Go back to Identity and Access Management Security School and revisit the subjects you need to freshen up on.

    •

    BROWSE BY TAG
    Identity and Access Management Security School,   Identity and Access Management final exam,   Two-Factor and Multifactor Authentication Strategies,   Enterprise Identity and Access Management,   User Authentication Services,   Enterprise User Provisioning Tools,   Identity Management Technology and Strategy,   Biometric Technology,   VIEW ALL TAGS

    Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


    << PREVIOUS | NEXT >>
    VIEW ALL IN THIS CATEGORY


    RELATED CONTENT
    Two-Factor and Multifactor Authentication Strategies
    Two-factor authentication, vigilance foil password theft
    Security on a budget: How to make the most of authentication tools
    Best Authentication Products
    Best Identity and Access Management Products
    Are 'strong authentication' methods strong enough for compliance?
    PCI compliance requirement 7: Restrict access
    PCI compliance requirement 9: Physical access
    Best practices: How to implement and maintain enterprise user roles
    Changing times for identity management
    RSA researcher Ari Juels: RFID tags may be easily hacked

    Enterprise User Provisioning Tools
    Quiz: Compliance-driven role management
    Identity lifecycle management for security and compliance
    Content-aware IAM: Uniting user access and data rights
    Is Identity Management as a Service (IDaaS) a good idea?
    Top tactics for endpoint security
    How to edit group policy objects to give a user local admin rights
    Privileged account management critical to data security
    Making the case for enterprise IAM centralized access control
    Lesson 3: How to implement secure access
    Best practices for a privileged access policy to secure user accounts

    RELATED GLOSSARY TERMS
    Terms from Whatis.com − the technology online dictionary
    AAA server  (SearchSecurity.com)
    authentication  (SearchSecurity.com)
    authentication, authorization, and accounting  (SearchSecurity.com)
    federated identity management  (SearchSecurity.com)
    Kerberos  (SearchSecurity.com)
    password hardening  (SearchSecurity.com)
    typeprint analysis  (SearchSecurity.com)

    RELATED RESOURCES
    2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
    Search Bitpipe.com for the latest white papers and business webcasts
    Whatis.com, the online computer dictionary




    Search Additional Security Research and Solutions
    TechTarget Security Media
    Information Security View this month\\'s issue and subscribe today.
    Information Security Decisions Apply online for free conference admission.
    		SearchSecurity.com
    HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
    SEARCH :     Site Index Powered by: Search Powered by Google

    About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
    TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

    TechTarget Corporate Web Site  |  Media Kits  |  Site Map




    All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy     		  TechTarget - The IT Media ROI Experts