Question 1

What does RBAC stand for in the context of access control?

Accepted Answer

Role-Based Access Control

Answer

Rule-Based Access Control

Answer

Role-Based User Control

Answer

Random-Based Access Control

Question 2

What is the purpose of multi-factor authentication (MFA) in information security?

Accepted Answer

Combining two or more independent credentials

Answer

Using a physical key only

Answer

Authenticating users through IP address verification

Answer

Using a single password for all systems

Question 3

What does the principle of least privilege aim to achieve in information security?

Accepted Answer

Granting users the minimum access necessary to perform their job

Answer

Allowing all users to have administrative access

Answer

Granting users more access than they need

Answer

Denying all access by default

Question 4

What is the primary goal of access governance within an organization?

Accepted Answer

Ensuring compliance with regulations and policies

Answer

Granting unrestricted access to all users

Answer

Increasing operating costs

Answer

Allowing users to manage their own access

Question 5

What role does segregation of duties play in Identity and Access Management (IAM)?

Accepted Answer

Reducing the risk of fraud or error by dividing tasks

Answer

Allowing all users to have full administrative privileges

Answer

Increasing complexity of IAM processes

Answer

Combining critical tasks under one person

Question 6

What does the term 'IAM' stand for in the context of information security management?

Accepted Answer

Identity and Access Management

Answer

Information Access Management

Answer

Internet Access Management

Answer

Individual Access Management

Question 7

What is the purpose of a Digital Certificate in authentication processes?

Accepted Answer

Verifying the identity of users or devices

Answer

Granting access to all users by default

Answer

Providing physical access to facilities

Answer

Storing user passwords securely

Question 8

What is the role of Role-Based Access Control (RBAC) in access management?

Accepted Answer

Assigning roles to users based on predefined policies

Answer

Randomly assigning access rights to users

Answer

Allowing users to define their own roles

Answer

Granting access based on location

Question 9

What is the primary purpose of access provisioning in Identity and Access Management (IAM)?

Accepted Answer

To ensure users have the appropriate access rights

Answer

To create new user accounts manually

Answer

To randomly revoke access

Answer

To increase the number of privileged accounts

Question 10

What authentication factor does a biometric scan fall under in multi-factor authentication (MFA)?

Accepted Answer

Something you are

Answer

Something you have

Answer

Something you know

Answer

Something you learn

Question 11

What is the primary goal of access provisioning?

Accepted Answer

To ensure users have the appropriate access rights

Answer

To increase the number of privileged accounts

Answer

To revoke access randomly

Answer

To create new user accounts manually

Question 12

What is the purpose of segregation of duties in IAM?

Accepted Answer

To reduce the risk of fraud or error by dividing tasks

Answer

To allow users to manage their own access

Answer

To increase the complexity of IAM processes

Answer

To combine critical tasks under one person

Question 13

What is multi-factor authentication (MFA)?

Accepted Answer

Combining two or more independent credentials

Answer

Using a single password for all systems

Answer

Authenticating users through IP address verification

Answer

Using a physical key only

Question 14

Which access control model assigns roles to users based on predefined policies?

Accepted Answer

Role-Based Access Control

Answer

Rule-Based Access Control

Answer

Mandatory Access Control

Answer

Discretionary Access Control

Question 15

What does the Zero Trust Model emphasize in security?

Accepted Answer

Always verifying the identity of users and devices

Answer

Using only passwords for authentication

Answer

Allowing open access to all resources

Answer

Trusting all internal users by default

Question 16

What is the principle of least privilege?

Accepted Answer

Granting users the minimum access necessary to perform their job

Answer

Allowing all users to have administrative access

Answer

Granting users more access than they need

Answer

Denying all access by default

Question 17

What is the primary purpose of a digital certificate in information security?

Accepted Answer

To verify the identity of a user or device

Answer

To automate user provisioning processes

Answer

To grant access to all network resources

Answer

To store personal information securely

Question 18

What is the role of access request and approval in an IAM system?

Accepted Answer

To ensure users are granted appropriate access based on policy and need

Answer

To randomly assign access rights to users

Answer

To increase the complexity of access management processes

Answer

To grant all users unrestricted access by default

Question 19

What does the acronym IAM stand for in the context of information security?

Accepted Answer

Identity and Access Management

Answer

Individual Access Management

Answer

Information Access Management

Answer

Internet Access Management

Question 20

What is the purpose of a password policy in an IAM system?

Accepted Answer

To establish rules and requirements for creating and managing passwords

Answer

To restrict access to the IAM system

Answer

To allow users to choose any password they want

Answer

To store passwords in plain text

Question 21

What is the purpose of attribute-based access control (ABAC) in IAM?

Accepted Answer

To regulate access to resources based on user attributes and policies

Answer

To grant access based on user location

Answer

To restrict access based on the time of day

Answer

To randomly assign access rights to users

Question 22

What is the purpose of a session management in an IAM system?

Accepted Answer

To monitor and control user sessions to ensure secure access to resources

Answer

To synchronize user identities

Answer

To generate security reports

Answer

To create new user accounts

Question 23

What is the role of identity proofing in IAM?

Accepted Answer

To verify the identity of users before granting access to resources

Answer

To track user activity

Answer

To delete user accounts

Answer

To randomly assign access rights to users

Question 24

What is the purpose of least privilege in IAM?

Accepted Answer

To grant users the minimum level of access required to perform their job functions

Answer

To restrict access based on the time of day

Answer

To assign access rights randomly to users

Answer

To grant users unrestricted access to all resources

Question 25

What is the purpose of identity federation in IAM?

Accepted Answer

To enable users to access multiple systems with a single set of credentials

Answer

To restrict access to a single system

Answer

To create new user accounts

Answer

To generate security reports

Question 26

Which of the following is a common challenge in the IAM lifecycle phase of access request and approval?

Accepted Answer

Insufficient understanding of access needs for decision making

Answer

Consistent processes across all units

Answer

Efficient and clear process for requesting access

Answer

Automated access request approval

Question 27

What is the primary goal of access provisioning?

Accepted Answer

To ensure users have the appropriate access rights

Answer

To create new user accounts manually

Answer

To increase the number of privileged accounts

Answer

To revoke access randomly

Question 28

What does RBAC stand for in the context of Identity and Access Management (IAM)?

Accepted Answer

Role-Based Access Control

Answer

Role-Based Authentication Control

Answer

Rule-Based Access Control

Answer

Random-Based Access Control

Question 29

What is the principle of least privilege in IAM?

Accepted Answer

Granting users the minimum access necessary to perform their job

Answer

Granting users more access than they need

Answer

Allowing all users to have administrative access

Answer

Denying all access by default

Question 30

What is the primary goal of IAM governance?

Accepted Answer

To manage user identities and their access while ensuring compliance and reducing risk

Answer

To increase the complexity of access management

Answer

To centralize all IT functions

Answer

To reduce the number of user accounts

Question 31

What is the purpose of access reviews and certification in Identity and Access Management (IAM)?

Accepted Answer

To validate the appropriateness of access rights based on user roles

Answer

To revoke all user access periodically

Answer

To create new user accounts

Answer

To enforce password changes

Question 32

What is the main objective of segregation of duties in Identity and Access Management (IAM)?

Accepted Answer

To reduce the risk of fraud or error by dividing tasks

Answer

To allow users to manage their own access

Answer

To increase the complexity of IAM processes

Answer

To combine critical tasks under one person

Question 33

What is the purpose of access enforcement in Identity and Access Management (IAM)?

Accepted Answer

To ensure that only authorized users can access specific resources or perform actions

Answer

To limit access to a single resource

Answer

To grant unlimited access to all users

Answer

To change user passwords regularly

Question 34

What is the Zero Trust Model in the context of Identity and Access Management (IAM)?

Accepted Answer

A model that always verifies the identity of users and devices before granting access

Answer

A model that trusts all internal users by default

Answer

A model that uses only single-factor authentication

Answer

A model that centralizes all access requests

Question 35

What is the purpose of access control in Identity and Access Management (IAM)?

Accepted Answer

To determine who has the right to access specific resources or perform certain actions

Answer

To restrict access to a single user only

Answer

To manage user passwords

Answer

To grant unlimited access to all users

Question 36

What is the purpose of Identity Governance in the context of IAM?

Accepted Answer

To ensure that identities and their access privileges are properly managed and in compliance with regulations.

Answer

To randomly assign access rights to users

Answer

To grant unrestricted access to all users within an organization

Answer

To automate all identity management processes without oversight

Question 37

What is the purpose of a Privileged Access Management (PAM) solution in IAM?

Accepted Answer

To manage and monitor privileged accounts and access to critical systems.

Answer

To automate IAM processes without human intervention

Answer

To limit access only to non-privileged users

Answer

To provide unrestricted access to all users within an organization

Question 38

What is the concept of Separation of Duties (SoD) in the context of IAM?

Accepted Answer

Separation of Duties requires that no single individual has all the necessary permissions to carry out a fraudulent activity.

Answer

Allowing users to have unrestricted access to all resources

Answer

Combining all duties under one individual for efficiency

Answer

Assigning multiple individuals the same permissions for redundancy

Question 39

What is the difference between Authentication and Authorization in the context of IAM?

Accepted Answer

Authentication verifies a user's identity, while Authorization determines what actions the user can perform.

Answer

Authentication authorizes a user's actions, while Authorization verifies their identity

Answer

Authentication checks user permissions, while Authorization checks user passwords

Answer

Authentication and Authorization are the same thing

Question 40

What is the purpose of least privilege principle in IAM?

Accepted Answer

To grant users the minimum level of access required to perform their job functions

Answer

To ensure that every user has full administrative privileges

Answer

To provide users with unrestricted access to all resources

Answer

To grant access based on the user's seniority within the organization

Question 41

What is the purpose of an access control list (ACL) in IAM?

Accepted Answer

To define which users or system processes are granted access to resources

Answer

To restrict access based on the user's social media activity

Answer

To automatically grant access to all users within the network

Answer

To generate random access tokens for all users

Question 42

What is the purpose of a single sign-on (SSO) system in IAM?

Accepted Answer

To allow users to access multiple applications with a single set of login credentials

Answer

To require users to create separate accounts for each application

Answer

To grant access based on the user's device location

Answer

To restrict access to a single application for each user

Question 43

In Challenge-Response Protocol, what is the purpose of the challenge sent by the verifier to the claimant?

Accepted Answer

To prompt the claimant to generate a response by combining the challenge with a secret

Answer

To deny access to the claimant

Answer

To provide the claimant with the secret directly

Answer

To authenticate the verifier itself

Question 44

What does the claimant do with the challenge in a Challenge-Response Protocol?

Accepted Answer

Combines it with a secret to generate a response

Answer

Shares it with other claimants

Answer

Ignores it completely

Answer

Sends it back to the verifier as is

Question 45

Which type of value is typically used as the challenge in a Challenge-Response Protocol?

Accepted Answer

Random value or nonce

Answer

User's password

Answer

Public key

Answer

Pre-determined value

Question 46

What cryptographic operation is commonly used by the claimant to combine the challenge and a secret in a Challenge-Response Protocol?

Accepted Answer

Hashing

Answer

Digital signature

Answer

Asymmetric encryption

Answer

Symmetric encryption

Question 47

Which of the following is NOT a common method used by the claimant to generate a response in a Challenge-Response Protocol?

Accepted Answer

Sharing the challenge with other claimants

Answer

Combining the challenge with a secret using symmetric encryption

Answer

Hashing the challenge with a shared secret

Answer

Applying a private key operation to the challenge

Question 48

What does the term 'Identity Proofing' refer to?

Accepted Answer

The process by which a CSP collects, validates, and verifies information about a person.

Answer

The party that manages the subscriber’s primary authentication credentials

Answer

An authority responsible for the generation of data, digital evidence, or physical documents that can be used as identity evidence.

Answer

A category that conveys the degree of confidence that the applicant’s claimed identity is their real identity

Question 49

What is an Identity Provider (IdP) responsible for?

Accepted Answer

Managing the subscriber’s primary authentication credentials and issuing assertions derived from those credentials.

Answer

Developing widely used authentication protocols like Kerberos

Answer

Collecting, validating, and verifying information about a person

Answer

Generating data, digital evidence, or physical documents that can be used as identity evidence

Question 50

What is the Identity Assurance Level (IAL) intended to convey?

Accepted Answer

The degree of confidence that the applicant’s claimed identity is their real identity.

Answer

Issuing assertions derived from authentication credentials

Answer

Managing primary authentication credentials of subscribers

Answer

Developing widely used authentication protocols like Kerberos

Question 51

In the context of identity verification, what does an Issuing Source refer to?

Accepted Answer

An authority responsible for the generation of data, digital evidence, or physical documents that can be used as identity evidence.

Answer

Developing widely used authentication protocols like Kerberos

Answer

Issuing assertions derived from authentication credentials

Answer

Managing primary authentication credentials of subscribers

Question 52

What is the purpose of the Kerberos authentication protocol?

Accepted Answer

To allow users to securely authenticate to a Key Distribution Center (KDC) and receive tickets for communication with other users.

Answer

Managing primary authentication credentials of subscribers

Answer

Generating random passwords for users

Answer

Issuing assertions derived from authentication credentials

Question 53

What is the function of an Identity Attribute in the context of identity management?

Accepted Answer

Describing a unique characteristic of a subject within a specific context.

Answer

Managing primary authentication credentials of subscribers

Answer

Developing widely used authentication protocols like Kerberos

Answer

Issuing assertions derived from authentication credentials

Question 54

What term is used to describe the process by which an applicant’s claimed identity is verified to be their real identity?

Accepted Answer

Identity Proofing

Answer

Identity Provider (IdP)

Answer

Identity Evidence

Answer

Identity Assurance Level (IAL)

Question 55

What role does an Identity Provider (IdP) play in the authentication process?

Accepted Answer

Managing the subscriber’s primary authentication credentials and issuing assertions based on those credentials.

Answer

Developing widely used authentication protocols like Kerberos

Answer

Collecting, validating, and verifying information about a person

Answer

Generating data, digital evidence, or physical documents that can be used as identity evidence

Question 56

What is the primary function of an Identity Provider (IdP) within the context of identity authentication?

Accepted Answer

Managing the subscriber’s primary authentication credentials and issuing assertions derived from those credentials.

Answer

Generating data, digital evidence, or physical documents that can be used as identity evidence

Answer

Collecting, validating, and verifying information about a person

Answer

Developing widely used authentication protocols like Kerberos

Question 57

Which of the following is NOT a phase in the lifecycle transformation IAM model?

Accepted Answer

Implementation

Answer

Monitoring

Answer

Testing

Answer

Planning

Question 58

In the context of IAM, what does the term 'entitlement management' refer to?

Accepted Answer

Assigning and controlling the specific rights and permissions of individual users within an organization.

Answer

Managing employee payroll

Answer

Setting up virtual private networks

Answer

Overseeing office supplies inventory

Question 59

What is the purpose of 'role-based access control' in IAM?

Accepted Answer

To define and manage user access based on the roles they perform in the organization.

Answer

To track employee attendance

Answer

To schedule project meetings

Answer

To analyze website traffic

Question 60

What is the primary goal of identity lifecycle management in IAM?

Accepted Answer

To ensure that the right individuals have the right access to the right resources at the right time.

Answer

To increase company profits

Answer

To improve customer satisfaction

Answer

To decrease employee turnover

Question 61

What is the role of an approver in the access request and approval process in IAM?

Accepted Answer

To review and make decisions on access requests submitted by users.

Answer

To design network architecture

Answer

To create new user accounts

Answer

To develop software applications

Question 62

What is the purpose of access request and approval in IAM?

Accepted Answer

To ensure that users have appropriate access to resources while maintaining security and compliance.

Answer

To limit user access to resources

Answer

To grant access to all requested resources

Answer

To bypass security protocols

Question 63

What is dynamic provisioning in IAM?

Accepted Answer

Dynamic provisioning in IAM involves automatically adjusting and allocating user access rights based on predefined rules, policies, or attributes, allowing for on-demand and flexible assignment of access levels.

Answer

Dynamic provisioning focuses solely on static access assignments

Answer

Dynamic provisioning requires manual intervention for adjusting user access rights

Answer

Dynamic provisioning is a one-time process that does not adapt to changes in user roles

Question 64

What is entitlement provisioning in IAM?

Accepted Answer

Entitlement provisioning in IAM refers to the process of assigning specific rights, privileges, or permissions to users based on their roles or requirements within an organization, ensuring that users have access to the resources they need to perform their job functions.

Answer

Entitlement provisioning is only applicable to external users, not internal employees

Answer

Entitlement provisioning is focused solely on creating user accounts, not assigning permissions

Answer

Entitlement provisioning is about restricting user access to resources

Related quizzes

Related quizzes