User Provisioning and De-provisioning

5 minutes 5 Questions

User provisioning and de-provisioning involve creating, updating, and deactivating user accounts and access within an organization's systems, applications, or network resources. User provisioning sets up user accounts, defines permissions and access rights based on the user's role, and ensures that…

Test mode:

Exam (Timed)

Practice (With explanations)

Start practice test

Question 1

An intern, David, is having a six-month assignment, after which he will no longer need access. What is the appropriate measure to apply?

Create an account with privileges based on the intern role and set an expiration date. Allow David full access to resources to avoid access restrictions during the internship. Give David access to a shared account with other interns. Create a new account for David without any expiration date.

Correct Answer: Create an account with privileges based on the intern role and set an expiration date.

Creating an account with role-based permissions and setting an expiration date ensures that David's access is restricted to the internship period, maintaining the principle of least privilege and avoiding any unnecessary security risks.

Question 2

Your organization has recently hired a new employee, John, who is joining the marketing department. As a security administrator, you are responsible for provisioning accounts for new users. What is the best action to take?

Create an account for John based on predefined Marketing Group policies and permissions. Create a new set of permissions specifically for John. Give John temporary administrator access to select necessary permissions. Grant John full access to all resources, and then gradually remove unnecessary permissions.

Correct Answer: Create an account for John based on predefined Marketing Group policies and permissions.

The best practice is to create accounts based on predefined policies and permissions for specific roles or departments, such as the Marketing Group. This ensures the least privilege principle and avoids risking system security.

Question 3

A system administrator is asked to transfer Sarah's account permissions to her coworker, James because Sarah is going on maternity leave. What is the best approach?

Assign both Sarah's and James' accounts the necessary permissions, and let James use his own account. Share the password of Sarah's account with James for the duration of her leave. Transfer Sarah's account to James and disable Sarah's account. Create a new account for James with the required permissions based on Sarah's role.

Correct Answer: Create a new account for James with the required permissions based on Sarah's role.

Creating a new account with the required permissions for James ensures that the principle of least privilege is maintained and avoids possible security risks while providing necessary access based on the role.

Secure Your Security+ SY0-701

1,200+ questions across all 5 SY0-701 domains

More User Provisioning and De-provisioning questions

2 questions (total)

Start 2 question test

User Provisioning and De-provisioning

User Provisioning and De-provisioning in CompTIA Security+ Exam

CompTIA Security+ - User Provisioning and De-provisioning Example Questions

Question 1

Question 2

Question 3

Secure Your Security+ SY0-701