FiltersDone

Question type

Essay

Multiple Choice

Short Answer

True False

Matching

Exam 15: CompTIA Security+

Show Answer

Share

---

All types

Filters

Study FlashcardsPractice ExamLearn

Question 131

Multiple Choice

Review LaterAdd Note

Review Later

A security analyst is hardening a large-scale wireless network. The primary requirements are the following: Must use authentication through EAP-TLS certificates Must use an AAA server Must use the most secure encryption protocol Given these requirements, which of the following should the analyst implement and recommend? (Choose two.)

A) 802.1X
B) 802.3
C) LDAP
D) TKIP
E) CCMP
F) WPA2-PSK

G) All of the above
H) D) and E)

Correct Answer

verified

Show Answer

Question 132

Multiple Choice

Review LaterAdd Note

Review Later

A security administrator is creating a risk assessment with regard to how to harden internal communications in transit between servers. Which of the following should the administrator recommend in the report?

A) Configure IPSec in transport mode.
B) Configure server-based PKI certificates.
C) Configure the GRE tunnel.
D) Configure a site-to-site tunnel.

E) B) and C)
F) A) and D)

Correct Answer

verified

Show Answer

Question 133

Multiple Choice

Review LaterAdd Note

A systems administrator needs to install the same X.509 certificate on multiple servers. Which of the following should the administrator use?

A penetration tester finds that a company's login credentials for the email client were client being sent in clear text. Which of the following should be done to provide encrypted logins to the email server?

A remote user (User1) is unable to reach a newly provisioned corporate windows workstation. The system administrator has been given the following log files from the VPN, corporate firewall and workstation host. Which of the following is preventing the remote user from being able to access the workstation?

A network administrator is trying to provide the most resilient hard drive configuration in a server. With five hard drives, which of the following is the MOST fault-tolerant configuration?

A security analyst is working on a project that requires the implementation of a stream cipher. Which of the following should the analyst use?

In a corporation where compute utilization spikes several times a year, the Chief Information Officer (CIO) has requested a cost-effective architecture to handle the variable capacity demand. Which of the following characteristics BEST describes what the CIO has requested?

Which of the following would enhance the security of accessing data stored in the cloud? (Select TWO)

A user is presented with the following items during the new-hire onboarding process: -Laptop -Secure USB drive -Hardware OTP token -External high-capacity HDD -Password complexity policy -Acceptable use policy -HASP key -Cable lock Which of the following is one component of multifactor authentication?

Which of the following would a security specialist be able to determine upon examination of a server's certificate?

As part of the SDLC, a third party is hired to perform a penetration test. The third party will have access to the source code, integration tests, and network diagrams. Which of the following BEST describes the assessment being performed?

Which of the following BEST describes a network-based attack that can allow an attacker to take full control of a vulnerable host?

A forensics analyst is investigating a hard drive for evidence of suspected illegal activity. Which of the following should the analyst do FIRST?

As part of a new BYOD rollout, a security analyst has been asked to find a way to securely store company data on personal devices. Which of the following would BEST help to accomplish this?

A company wants to host a publicly available server that performs the following functions: Evaluates MX record lookup Can perform authenticated requests for A and AAA records Uses RRSIG Which of the following should the company use to fulfill the above requirements?

A company has won an important government contract. Several employees have been transferred from their existing projects to support a new contract. Some of the employees who have transferred will be working long hours and still need access to their project information to transition work to their replacements. Which of the following should be implemented to validate that the appropriate offboarding process has been followed?

An organization has implemented an IPSec VPN access for remote users. Which of the following IPSec modes would be the MOST secure for this organization to implement?

An office recently completed digitizing all its paper records. Joe, the data custodian, has been tasked with the disposal of the paper files, which include: Intellectual property Payroll records Financial information Drug screening results Which of the following is the BEST way to dispose of these items?

A security administrator has been assigned to review the security posture of the standard corporate system image for virtual machines. The security administrator conducts a thorough review of the system logs, installation procedures, and network configuration of the VM image. Upon reviewing the access logs and user accounts, the security administrator determines that several accounts will not be used in production. Which of the following would correct the deficiencies?