Question 1

The primary vulnerability associated with many methods of remote access is&#10;A)Weak encryption&#10;B)Too complicated for users to understand&#10;C)The passing of critical data in clear text&#10;D)Incompatibility with firewalls

Accepted Answer

The primary vulnerability associated with many methods of remote access is the passing of critical data in clear text. This exposes sensitive information to potential interception and misuse by unauthorized individuals.

Question 2

With IPsec,security associations are used to establish the logical set of security parameters designed to facilitate the sharing of information between entities.The security association protects&#10;A)Confidentiality&#10;B)Integrity and confidentiality&#10;C)Confidentiality and availability&#10;D)Integrity and availability

Accepted Answer

A security association is used to establish the security parameters for communication between entities in IPsec. These parameters include authentication, encryption, and integrity. The security association ensures the confidentiality and integrity of the data being transmitted by encrypting and verifying the data's integrity. Therefore, the best choice is B (Integrity and confidentiality).

Question 3

Your boss wants you to suggest a secure way to connect to the corporate network from home.You will have to connect through the Internet.What is a possible solution?&#10;A)Telnet&#10;B)FTP&#10;C)VPN&#10;D)rsh

Accepted Answer

VPN (Virtual Private Network) is the best choice for a secure connection to the corporate network over the internet. It encrypts the communication between the home computer and the corporate network, preventing any unauthorized access or data theft. Telnet, FTP, and rsh are not recommended as they transmit data in plaintext, making it vulnerable to interception and exploitation by hackers.

Question 4

The 802.1x standard is for a protocol to support communications between a user and a(n)&#10;A)Authorization device&#10;B)Available device&#10;C)Serial device&#10;D)Another user

Accepted Answer

The 802.1x standard defines a protocol that enables a user to be authenticated by an authorization device (such as a RADIUS server) before being granted access to a network. This standard is commonly used for secure wireless network access.

Question 5

RADIUS uses&#10;A)TCP port 1812 for authentication and TCP port 1813 for accounting&#10;B)TCP port 1812 for accounting and TCP port 1813 for authentication&#10;C)UDP port 1812 for authentication and UDP port 1813 for accounting&#10;D)UDP port 1812 for accounting and UDP port 1813 for authentication

Accepted Answer

RADIUS (Remote Authentication Dial-In User Service) uses UDP (User Datagram Protocol) ports 1812 for authentication and 1813 for accounting. TCP (Transmission Control Protocol) is not used in RADIUS communication.

Question 6

The three major components of the SSH protocol are the&#10;A)Transport Layer Protocol,User Authentication Protocol,and Connection Protocol&#10;B)User Datagram Protocol,User Authentication Protocol,and Connection Protocol&#10;C)Transport Layer Protocol,User Encryption Protocol,and Connection Protocol&#10;D)User Datagram Protocol,User Encryption Protocol,and Connection Protocol

Accepted Answer

The SSH protocol has three major components: Transport Layer Protocol, User Authentication Protocol, and Connection Protocol. The Transport Layer Protocol provides confidentiality and integrity to the connection, the User Authentication Protocol authenticates the user to the server, and the Connection Protocol allows the establishment of a secure connection between the client and server. Option B is incorrect because User Datagram Protocol is not a part of the SSH protocol. Option C and D are incorrect because there is no User Encryption Protocol in the SSH protocol.

Question 7

Which of the following protocols involves a two-way handshake in which the username and password are sent across the link in clear text?&#10;A)PAP&#10;B)SSH&#10;C)EAP&#10;D)CHAP

Accepted Answer

PAP (Password Authentication Protocol) is an authentication protocol that involves a two-way handshake and sends the username and password across the link in clear text. This makes it easy for attackers to intercept and steal login credentials. It is not recommended to use PAP for authentication in a network. SSH (Secure Shell) is a secure network protocol that uses encryption to protect network communications and is not relevant to this question. EAP (Extensible Authentication Protocol) is not a specific authentication protocol, but a framework for different authentication methods to be used within it. CHAP (Challenge Handshake Authentication Protocol) is a more secure authentication protocol that uses a three-way handshake and does not send the password in clear text.

Question 8

L2TP uses&#10;A)UDP port 1701&#10;B)TCP port 1701&#10;C)TCP port 1107&#10;D)TCP port 1217

Accepted Answer

L2TP (Layer 2 Tunneling Protocol) uses UDP port 1701 for establishing a connection and sending encapsulated data.

Question 9

TACACS+ uses&#10;A)UDP port 49 and TCP port 50 for login&#10;B)UDP port 49 and TCP port 49 for login&#10;C)UDP port 49 and UDP port 50 for login&#10;D)TCP port 49 and UDP port 50 for login

Accepted Answer

TACACS+ uses TCP port 49 for both authentication and authorization. It does not use UDP for login purposes.

Question 10

What does TACACS stand for?&#10;A)Terminal Access Control of Authentication and Control Systems&#10;B)Terminal Access Controller Access Control System&#10;C)Television Availability Control And Communication Standard&#10;D)Teletype Authentication and Control of All Control Systems

Accepted Answer

TACACS stands for Terminal Access Controller Access Control System, which is a protocol used for authentication, authorization, and accounting (AAA) services in network security. The other options are not accurate descriptions of TACACS.

Question 11

What does SSH stand for?&#10;A)Simple Security Hardware&#10;B)Secure Socket Help&#10;C)Secure Shell&#10;D)Scientifically Secure Hard Drive

Accepted Answer

The answer of What does SSH stand for?&#10;A)Simple Security Hardware&#10;B)Secure...

Question 12

Which protocol enables the secure transfer of data from a remote PC to a server by creating a VPN across a TCP/IP network?&#10;A)PPPP&#10;B)PPTP&#10;C)PTPN&#10;D)PPTN

Accepted Answer

The answer of Which protocol enables the secure transfer of...

Question 13

What protocol would you use for remote access,to get a console with an encrypted connection?&#10;A)SSH&#10;B)Telnet&#10;C)FTP&#10;D)STP

Accepted Answer

The answer of What protocol would you use for remote...

Question 14

Which of the following protocols involves a three-way handshake and uses a shared secret key for communication?&#10;A)PAP&#10;B)CHAP&#10;C)TCP&#10;D)S/Telnet

Accepted Answer

The answer of Which of the following protocols involves a...

Question 15

In addition to &#34;What users know,&#34; &#34;What users have,&#34; and &#34;What users are,&#34; what did the author add to be able to authenticate a user?&#10;A)&#34;What users should have&#34;&#10;B)&#34;What users should think&#34;&#10;C)&#34;What users can argue they should be&#34;&#10;D)&#34;What users do&#34;

Accepted Answer

The answer of In addition to &#34;What users know,&#34; &#34;What...

Question 16

What does AAA stand for?&#10;A)Awareness,Accounting,Available&#10;B)Acceptable,Available,Activities&#10;C)Acute,Awareness,Accounting&#10;D)Authentication,Authorization,Accounting

Accepted Answer

The answer of What does AAA stand for?&#10;A)Awareness,Accounting,Available&#10;B)Acceptable,Available,Activities&#10;C)Acute,Awareness,Accounting&#10;D)Authentication,Authorization,Accounting...

Question 17

What does RADIUS stand for?&#10;A)Real Access Device Invisible Users Solution&#10;B)Rational Available Device Incremental Users Service&#10;C)Remote Authentication Dial-In User Service&#10;D)Remote Authentication Device Invisible Users Solution

Accepted Answer

The answer of What does RADIUS stand for?&#10;A)Real Access Device...

Question 18

With IPsec,AH and ESP&#10;A)Must be used together&#10;B)Must be used separately&#10;C)Can be used separately or together&#10;D)Must be used with EAP

Accepted Answer

The answer of With IPsec,AH and ESP&#10;A)Must be used together&#10;B)Must...

Question 19

What are the three types of accounting records in TACACS+?&#10;A)Availability,Accounting,Confidentiality&#10;B)Availability,Integrity,Confidentiality&#10;C)Start,Stop,Update&#10;D)Start,Stop,Delete

Accepted Answer

The answer of What are the three types of accounting...

Question 20

Which of the following describes the wireless standard?&#10;A)802.11&#10;B)854.12&#10;C)800.15&#10;D)756.10

Accepted Answer

The answer of Which of the following describes the wireless...

Question 21

Protecting the header information of a packet is referred to as _______________ protection.

Accepted Answer

The answer of Protecting the header information of a packet...

Question 22

Authorization is the matching of user-supplied credentials to previously stored credentials on a host machine,and usually involves a username and password.

Accepted Answer

The answer of Authorization is the matching of user-supplied credentials...

Question 23

Telnet traffic is encrypted by default.

Accepted Answer

The answer of Telnet traffic is encrypted by default....

Question 24

Authentication is the granting of specific permissions based on the privileges held by the account.

Accepted Answer

The answer of Authentication is the granting of specific permissions...

Question 25

Protecting only the data portion of a packet is referred to as _______________ protection.

Accepted Answer

The answer of Protecting only the data portion of a...

Question 26

The two protocols used in IPSec to provide traffic security are _________ and __________.

Accepted Answer

The answer of The two protocols used in IPSec to...

Question 27

Which type of access control would be used to grant permissions based on the duties that must be performed?&#10;A)Mandatory access control&#10;B)Discretionary access control&#10;C)Role-based access control&#10;D)Rule-based access control

Accepted Answer

The answer of Which type of access control would be...

Question 28

One of the fundamental design aspects of TACACS+ is the separation of authentication,authorization,and accounting.

Accepted Answer

The answer of One of the fundamental design aspects of...

Question 29

A door that requires a thumbprint,key card,and password is an example of&#10;A)Single sign-on&#10;B)Mutual authentication&#10;C)Multifactor authentication&#10;D)Dual access control

Accepted Answer

The answer of A door that requires a thumbprint,key card,and...

Question 30

TACACS+ is a client/server protocol that uses IP as its transport protocol.

Accepted Answer

The answer of TACACS+ is a client/server protocol that uses...

Question 31

Telnet is a secure way to remotely access a computer.

Accepted Answer

The answer of Telnet is a secure way to remotely...

Question 32

Which type of access control would allow the company to restrict employee access to the payroll file after hours or on weekends?&#10;A)Mandatory access control&#10;B)Discretionary access control&#10;C)Role-based access control&#10;D)Rule-based access control

Accepted Answer

The answer of Which type of access control would allow...

Question 33

Which of the following types of access control would you use to grant permissions based on the decision of the owner of an object?&#10;A)Mandatory access control&#10;B)Discretionary access control&#10;C)Role-based access control&#10;D)Rule-based access control

Accepted Answer

The answer of Which of the following types of access...

Question 34

RADIUS is a remote authentication protocol the uses UDP port 1812.

Accepted Answer

The answer of RADIUS is a remote authentication protocol the...

Question 35

In Kerberos environment,the first ticket in the two-step process is the ticket-granting ticket.

Accepted Answer

The answer of In Kerberos environment,the first ticket in the...

Question 36

Which type of access control would you use to grant permissions based on the sensitivity of the information contained in the objects?&#10;A)Mandatory access control&#10;B)Discretionary Access Control&#10;C)Role-based access control&#10;D)Rule-based access control

Accepted Answer

The answer of Which type of access control would you...

Question 37

The main weakness of SSH is that all traffic is sent in the clear.

Accepted Answer

The answer of The main weakness of SSH is that...

Question 38

________ is the encapsulation of one packet within another.It allows you to hide the original packet from view.

Accepted Answer

The answer of ________ is the encapsulation of one packet...

Question 39

With mandatory access controls,the owner of an object determines who has access to it.

Accepted Answer

The answer of With mandatory access controls,the owner of an...

Question 40

_______________ describes a process in which each side of an electronic communication verifies the authenticity of the other.

Accepted Answer

The answer of _______________ describes a process in which each...

Question 41

_______________ is the matching of user-supplied credentials to previously stored credentials on a host machine.

Accepted Answer

The answer of _______________ is the matching of user-supplied credentials...

Question 42

_______________ authentication is a term that describes the use of more than one authentication mechanism at the same time.

Accepted Answer

The answer of _______________ authentication is a term that describes...

Question 43

_______________ is the granting of specific permissions based on the privileges held by the account.

Accepted Answer

The answer of _______________ is the granting of specific permissions...

Question 44

_______________ is an authentication process by which the user can enter a single user ID and password then move from application to application or resource to resource without having to supply further authentication information.

Accepted Answer

The answer of _______________ is an authentication process by which...

Question 45

What are the three steps of establishing proper privileges?

Accepted Answer

The answer of What are the three steps of establishing...

Question 46

_______________ is the collection of billing and other detail records.

Accepted Answer

The answer of _______________ is the collection of billing and...

Deck 11: Authentication and Remote Access