220-1202: Domain 2 - Security

Question 1

Name common physical security measures.

Answer 1

Bollards, access control vestibule, badge reader, video surveillance, alarm systems, motion sensors, door locks, equipment locks, security guards, fences

Question 2

What are examples of physical access security methods?

Answer 2

Key fobs, smart cards, mobile digital key, keys, biometrics (retina scanner, fingerprint scanner, palm print scanner, facial recognition technology, voice recognition technology), lighting, magnetometers

Question 3

Define logical security concepts.

Answer 3

Principle of least privilege, Zero Trust model, access control lists (ACLs), multifactor authentication (MFA), Security Assertions Markup Language (SAML), single sign-on (SSO), just-in-time access, privileged access management (PAM), mobile device management (MDM), data loss prevention (DLP), identity access management (IAM), directory services

Question 4

What are some MFA methods?

Answer 4

Email, hardware token, authenticator application, SMS, voice call, time-based one-time password (TOTP), one-time password/passcode (OTP)

Question 5

What are basic Defender Antivirus controls?

Answer 5

Activate/deactivate, update definitions

Question 6

What firewall settings can be configured?

Answer 6

Activate/deactivate, port security, application security

Question 7

Name Windows user account types.

Answer 7

Local account, Microsoft account, standard account, administrator, guest user, power user

Question 8

What login options exist on Windows OS?

Answer 8

Username/password, PIN, fingerprint, facial recognition, single sign-on (SSO), passwordless (Windows Hello)

Question 9

Compare NTFS and share permissions.

Answer 9

File and folder attributes, inheritance

Question 10

What is the difference between “Run as administrator” and standard user?

Answer 10

Administrator has elevated privileges; standard user has limited permissions

Question 11

What is User Account Control (UAC)?

Answer 11

Security feature that prompts for permission or administrator credentials before allowing actions that could affect the system

Question 12

Name Windows encryption technologies.

Answer 12

BitLocker, BitLocker-To-Go, Encrypting File System (EFS)

Question 13

What Active Directory functions relate to security?

Answer 13

Joining domain, assigning log-in scripts, moving objects in organizational units, assigning home folders, applying Group Policy, selecting security groups, configuring folder redirection

Question 14

Name common wireless security protocols.

Answer 14

WPA2, WPA3

Question 15

What encryption methods are used in wireless security?

Answer 15

Temporal Key Integrity Protocol (TKIP), Advanced Encryption Standard (AES)

Question 16

What are common wireless authentication methods?

Answer 16

RADIUS, TACACS+, Kerberos, multifactor authentication

Question 17

Name common types of malware.

Answer 17

Trojan, rootkit, virus, spyware, ransomware, keylogger, boot sector virus, cryptominer, stalkerware, fileless malware

Question 18

What are examples of adware and related threats?

Answer 18

Potentially unwanted program (PUP)