Back to Security in the cloud

Identity and Access Management

5 minutes 5 Questions

Identity and Access Management (IAM) is an essential aspect of cloud security, ensuring that the right users have access to the appropriate resources within the cloud environment. IAM policies and tools manage, monitor, and control user access to reduce the risk of unauthorized access, data breache…

Test mode:
Start practice test
CISSP - Identity and Access Management Example Questions

Test your knowledge of Identity and Access Management

Question 1

A company maintains a web application used by employees and customers. The company wants to use the same web portal for both groups but maintain separate access control levels. Which IAM system should be used?

Correct Answer: Federated Identity Management

Federated Identity Management allows separate identity management systems to be used together, enabling users from different domains to access resources using their native authentication methods. Single Sign-On simplifies authentication, Role-Based, Attribute-Based, and Mandatory Access Controls manage permissions, and User Account Provisioning creates and manages user accounts but doesn't support different systems sharing access.

Question 2

An employee leaves a company, and their access privileges need to be removed. Which process in Identity and Access Management is responsible for this?

Correct Answer: Deprovisioning

Deprovisioning is the process of removing a user's access privileges when they no longer need them, such as when an employee leaves a company. Authentication and Authorization are related to user access, but don't involve removal. Password Management handles password changes and resets, Federation shares authentication information, and Audit involves tracking and verifying access.

Question 3

A company is implementing a centralized Identity and Access Management system for better access control and management. A new employee has joined the team, and they require access to several different systems. What is the most appropriate IAM process to grant the employee access?

Correct Answer: Provisioning

Provisioning is the process of creating and managing user accounts and their access to various systems and resources. Authentication establishes a user's identity, while authorization determines what the user is allowed to do. Federation allows sharing of authentication information across systems, Single Sign-On simplifies access by allowing a single login for multiple services, and Password Management is used to handle password changes and resets.

More Identity and Access Management questions
12 questions (total)
Start 12 question test