• Home
  • Blogs
  • [Full-Version] 2021 New TestKingsIT SYO-501 PDF Recently Updated Questions [Q113-Q132]

[Full-Version] 2021 New TestKingsIT SYO-501 PDF Recently Updated Questions [Q113-Q132]

Share

[Full-Version] 2021 New TestKingsIT SYO-501 PDF Recently Updated Questions

SYO-501 Exam with Guarantee Updated 715 Questions


Access & Identity Management

To excel in SY0-501 exam, you must understand the concepts of identity and access management, the implementation of access and identity management controls, the practices of account management, and the configuration and installation of access and identity servers. Plus, you need to be aware of LDAP, Kerberos, tokens, account types, and multifactor authentication. Besides these, candidates will also have to master such concepts as database security, password history, and guest accounts if to name a few.


Tools and Technologies

‘Tools and technologies' is a comprehensive topic that establishes the knowledge of network components, both hardware and software solutions, software tools, and troubleshooting of security issues. It also proves your mastery of security technologies, secure mobile devices, and secure protocols. Thus, you must be knowledgeable about firewall, VPN concentrator, protocol analyzer, event anomalies, DLP, honeynets, SCADA/ICS, and lock types.

 

NEW QUESTION 113
An auditor has identified an access control system that can incorrectly accept an access attempt from an unauthorized user. Which of the following authentication system has the auditor reviewed?

  • A. Certificate-based
  • B. Location based
  • C. Biometric-based
  • D. Password-based

Answer: C

 

NEW QUESTION 114
A security analyst needs a solution that can execute potential malware in a restricted and isolated environment for analysis. In which of the following technologies is the analyst interested?

  • A. Honeypot
  • B. DMZ
  • C. Staging
  • D. Sandboxing

Answer: D

 

NEW QUESTION 115
A security analyst is reviewing the following packet capture of an attack directed at a company's server located in the DMZ:

Which of the following ACLs provides the BEST protection against the above attack and any further attacks from the same IP, while minimizing service interruption?

  • A. Deny IP from 192.168.1.10/32 to 0.0.0.0/0
  • B. Deny TCP from 192.168.1.10 to 172.31.67.4
  • C. DENY TCO From ANY to 172.31.64.4
  • D. Deny UDP from 192.168.1.0/24 to 172.31.67.0/24

Answer: A

 

NEW QUESTION 116
A security technician has been assigned data destruction duties. The hard drives that are being disposed of contain highly sensitive information. Which of the following data destruction techniques is MOST appropriate?

  • A. Wiping
  • B. Degaussing
  • C. Purging
  • D. Shredding

Answer: D

Explanation:
Hard drive degaussing is a highly advanced technology used to sanitize hard drives before disposal or reuse. Degaussers come in various types and sizes, with varying effectiveness as well. A professional data destruction service selects the most appropriate degausser for the job based on prevailing circumstances.
Degaussing is fast and effective, and it ensures that you're compliant with data regulations.

 

NEW QUESTION 117
A company wants to provide a guest wireless system for its visitors. The system should have a captive portal for guest self-registration and protect guest devices from spreading malware to other connected devices. Which of the following should be done on the wireless network to satisfy these requirements? (Choose two.)

  • A. Use an open authentication system.
  • B. Configure a wireless IDS.
  • C. Enable client isolation.
  • D. Configure WPA2-PSK.
  • E. Disable SSID broadcasting.
  • F. Enforce 802.1X with PEAP.

Answer: C,F

 

NEW QUESTION 118
A newly purchased corporate WAP needs to be configured in the MOST secure manner possible.
INSTRUCTIONS
Please click on the below items on the network diagram and configure them accordingly:
WAP
DHCP Server
AAA Server
Wireless Controller
LDAP Server
If at any time you would like to bring back the initial state of the simulation, please click the Reset All button.

Answer:

Explanation:

 

NEW QUESTION 119
Which of the following would a security specialist be able to determine upon examination of a server's
certificate?

  • A. CSR
  • B. CA public key
  • C. Server private key
  • D. OID

Answer: D

 

NEW QUESTION 120
A company uses an enterprise desktop imaging solution to manage deployment of its desktop computers.
Desktop computer users are only permitted to use software that is part of the baseline image. Which of the following technical solutions was MOST likely deployed by the company to ensure only known-good software can be installed on corporate desktops?

  • A. File integrity checks
  • B. Configuration manager
  • C. Application whitelisting
  • D. Network access control

Answer: A

 

NEW QUESTION 121
An incident responder is preparing to acquire images and files from a workstation that has been compromised. The workstation is still powered on and running. Which of the following should be acquired LAST?

  • A. Processor cache
  • B. Application files on hard disk
  • C. Processes in running memory
  • D. Swap space

Answer: B

 

NEW QUESTION 122
A company needs to implement a system that only lets a visitor use the company's network infrastructure if the visitor accepts the AUP. Which of the following should the company use?

  • A. Captive portal
  • B. RADIUS
  • C. Password authentication protocol
  • D. WiFi-protected setup

Answer: A

 

NEW QUESTION 123
A security technician has been assigned data destruction duties. The hard drives that are being disposed of contain highly sensitive information. Which of the following data destruction techniques is MOST appropriate?

  • A. Degaussing
  • B. Shredding
  • C. Wiping
  • D. Purging

Answer: A

Explanation:
Hard drive degaussing is a highly advanced technology used to sanitize hard drives before disposal or reuse. Degaussers come in various types and sizes, with varying effectiveness as well. A professional data destruction service selects the most appropriate degausser for the job based on prevailing circumstances.
Degaussing is fast and effective, and it ensures that you're compliant with data regulations.

 

NEW QUESTION 124
A company's AUP requires:
* Passwords must meet complexity requirements.
* Passwords are changed at least once every six months.
* Passwords must be at least eight characters long.
An auditor is reviewing the following report:

Which of the following controls should the auditor recommend to enforce the AUP?

  • A. Prohibit password reuse
  • B. Account lockout thresholds
  • C. Password expiration
  • D. Account recovery

Answer: C

 

NEW QUESTION 125
Joe, a salesman, was assigned to a new project that requires him to travel to a client site. While waiting for a flight, Joe, decides to connect to the airport wireless network without connecting to a VPN, and the sends confidential emails to fellow colleagues. A few days later, the company experiences a data breach. Upon investigation, the company learns Joe's emails were intercepted. Which of the following MOST likely caused the data breach?

  • A. Policy violation
  • B. Zero-day attack
  • C. Insider threat
  • D. Social engineering

Answer: A

 

NEW QUESTION 126
A dumpster diver recovers several hard drives from a company and is able to obtain confidential data from one of the hard drives. The company then discovers its information is posted online.
Which of the following methods would have MOST likely prevented the data from being exposed?

  • A. Using Blowfish encryption on the hard drives
  • B. Removing the hard drive from its enclosure
  • C. Using magnetic fields to erase the data
  • D. Using software to repeatedly rewrite over the disk space

Answer: C

 

NEW QUESTION 127
An administrator is replacing a wireless router. The configuration of the old wireless router was not documented before it stopped functioning. The equipment connecting to the wireless network uses older legacy equipment that was manufactured prior to the release of the 802.11i standard. Which of the following configuration options should the administrator select for the new wireless router?

  • A. WPA2+TKIP
  • B. WPA+CCMP
  • C. WPA2+CCMP
  • D. WPA+TKIP

Answer: A

 

NEW QUESTION 128
Company policy requires the use if passphrases instead if passwords.
Which of the following technical controls MUST be in place in order to promote the use of passphrases?

  • A. History
  • B. Length
  • C. Reuse
  • D. Complexity

Answer: B

 

NEW QUESTION 129
Which of the following is the BEST choice for a security control that represents a preventive and corrective logical control at the same time?

  • A. Antivirus
  • B. Security awareness training
  • C. Intrusion detection system
  • D. Firewalls

Answer: A

 

NEW QUESTION 130
A user attempts to send an email to an external domain and quickly receives a bounce-back message. The user then contacts the help desk stating the message is important and needs to be delivered immediately. While digging through the email logs, a systems administrator finds the email and bounce-back details:
Your email has been rejected because it appears to contain SSN information. Sending SSN information via email to external recipients violates company policy.
Which of the following technologies successfully stopped the email from being sent?

  • A. DLP
  • B. WAF
  • C. UTM
  • D. DEP

Answer: A

 

NEW QUESTION 131
A security administrator suspects a MITM attack aimed at impersonating the default gateway is underway.
Which of the following tools should the administrator use to detect this attack? (Select two.)

  • A. Dig
  • B. Tracert
  • C. Ipconfig
  • D. Netstat
  • E. Nslookup
  • F. Ping

Answer: B,C

 

NEW QUESTION 132
......

Latest SYO-501 Pass Guaranteed Exam Dumps Certification Sample Questions: https://www.testkingit.com/CompTIA/latest-SYO-501-exam-dumps.html

Related Blogs

more
CompTIA SYO-501 Certification Practice Exam