Back to Virtualization Security

User Access Control and Management

5 minutes 5 Questions

User access control and management in a virtualized environment is critical in ensuring that only authorized users can access specific VMs, resources, or management interfaces. This involves implementing strong authentication methods, such as two-factor authentication (2FA) or multi-factor authenti…

Test mode:
Start practice test
CompTIA Security+ - User Access Control and Management Example Questions

Test your knowledge of User Access Control and Management

Question 1

Which of the following technologies can be used to implement two-factor authentication in a company?

Correct Answer: Smart card and PIN

Two-factor authentication requires two forms of identification (e.g., something you have and something you know). A combination of smart card (something you have) and PIN (something you know) fulfills this requirement, while other options mostly represent only one form of identification or are unrelated to authentication.

Question 2

A hiring manager needs access to the HR database for a limited time and with limited actions (read-only). Which policy should be applied?

Correct Answer: Least Privilege

The principle of Least Privilege states that users should only be granted necessary permissions. The hiring manager only needs read-only access for a limited time, hence applying Least Privilege is the best solution. The other options don't directly address this requirement.

Question 3

Which access control model offers the highest security for top-secret documents in an intelligence agency?

Correct Answer: Mandatory Access Control (MAC)

Mandatory Access Control (MAC) is the most secure model as access is determined by the system based on security labels and clearance levels, making it ideal for top-secret documents. The other options don't provide the same strict level of security.

More User Access Control and Management questions
2 questions (total)
Start 2 question test