True/False
Indicate whether the sentence or statement is true
or false.
|
|
|
1.
|
Each
time a user attempts to access a resource, the user’s access token is compared with a list of
permissions associated with the resource.
|
|
|
2.
|
Windows XP does not support third party authentication protocols.
|
|
|
3.
|
Windows XP is able to control access not only at the object level, but also to control
which services defined for the object’s type a particular security token is allowed to perform
or request.
|
|
|
4.
|
The
Ctrl+Alt+Delete keyboard sequence can be faked by using a remote location and a special
program.
|
|
|
5.
|
By
default, the logon window displays the name of the last user to logon.
|
|
|
6.
|
Third
party software is required to display a security warning message.
|
|
|
7.
|
By
default, the Windows XP logon window includes a Shutdown button.
|
|
|
8.
|
When
you log on to a local system, the Kerberos authentication protocol is used to communicate between the
login dialog and the security subsystem.
|
|
|
9.
|
IPSec
negotiates a secure encrypted communications link between a client and server through public and
private encryption key management.
|
|
|
10.
|
The
User Configuration portion of the Local Computer Policy console is structured in much the same way as
the Computer Configuration portion.
|
Multiple Choice
Identify the
letter of the choice that best completes the statement or answers the question.
|
|
|
11.
|
What
must a user supply to logon to a Windows XP system? a. | ACL | c. | UserID and
access token | b. | UserID and password | d. | Password | | | | |
|
|
|
12.
|
An
Allow setting enables a service for a user or group, whereas a ____ setting disables
it. a. | Disable | c. | Deny | b. | Revoke | d. | Restrict | | | | |
|
|
|
13.
|
When
a Windows XP system is part of a domain, only the ____ logon method can be used. a. | Windows
Welcome | c. | network | b. | domain | d. | classic | | | | |
|
|
|
14.
|
____
requires that a user supply a valid account name. a. | Identification | c. | Authorization | b. | Authentication | d. | Auditing | | | | |
|
|
|
15.
|
Which
of the following are included in an access token? a. | Unique SID, list of groups, list of rights and
privileges | b. | Unique SID, list of rights and
privileges | c. | User ID, password, list of groups | d. | User ID,
password | | |
|
|
|
16.
|
Which
of the following is a synonym for program? a. | Shell | c. | Kernel | b. | Process | d. | ACL | | | | |
|
|
|
17.
|
What
is the default shell process for Windows XP? a. | Windows Explorer | c. | Start Desktop | b. | Internet
Explorer | d. | Program
Manager | | | | |
|
|
|
18.
|
When
defining an object, its ____ describes the kind of entity it is. a. | shell | c. | type | b. | process | d. | ACL | | | | |
|
|
|
19.
|
What
permission is granted for new objects in XP? a. | None | c. | Read | b. | Full Control | d. | Execute | | | | |
|
|
|
20.
|
Which
of the following is the attention sequence used to initiate logon? a. | Ctrl+Alt+Delete | c. | Ctrl+WindowsKey+Alt | b. | Ctrl+Shift+Delete | d. | Ctrl+Alt+Space | | | | |
|
|
|
21.
|
A
system administrator can alter the default logon process appearance and function using
____. a. | Winaccess | c. | Logon
Administrative Tools | b. | the Security Control Panel | d. | Winlogon | | | | |
|
|
|
22.
|
What
Registry key is used to prevent the display of the last logged-on user name? a. | DontDisplayLastUserName | c. | NameDisplay | b. | LastUserNameDisplay | d. | DisplayLastUserName | | | | |
|
|
|
23.
|
When
working with the MMC, which menu option would you choose to add a snap-in? a. | File,
Add | c. | View, New
Snap-In | b. | File, Add/Remove Snap-in | d. | Snap-In, Add/Remove | | | | |
|
|
|
24.
|
The
____ Registry setting puts a label on the title bar of the legal notice window that appears during
logon. a. | LegalNoticeStatus | c. | LegalNoticeTitle | b. | LegalNoticeText | d. | LegalNoticeCaption | | | | |
|
|
|
25.
|
The
____ shell does not offer a Start menu, taskbar, Task Manager, and many other interface controls to
which you are accustomed with Windows XP. a. | Basic | c. | Program Manager | b. | Internet
Explorer | d. | Windows
Explorer | | | | |
|
|
|
26.
|
What
would you do to remove the Shutdown button from the logon dialog? a. | Set
ShutdownWithoutLogon to 0 | b. | Set ShutdownWithoutLogon to 1 | c. | Set
DisplayShutdownButton to false | d. | Set DontDisplayShutdownButton to true | | |
|
|
|
27.
|
The
____ setting instructs the machine to log itself on immediately after the system starts
up. a. | AutoLogon | c. | AutoStartup | b. | AutoAdminLogon | d. | LogonOnStartup | | | | |
|
|
|
28.
|
What
is the default Windows XP setting for automatic account lockout? a. | 1
attempt | c. | 5
attempts | b. | 3 attempts | d. | no automatic lockout | | | | |
|
|
|
29.
|
____
are domain-wide controls that specify password requirements, account lockout settings, auditing, user
rights, security options, and more. a. | Logon policies | c. | Security policies | b. | Access control
lists | d. | Access
settings | | | | |
|
|
|
30.
|
The
authentication protection method is determined by either the communication mechanism or the settings
in the ____. a. | local security
policy | c. | access control
center | b. | group policy object | d. | domain security settings | | | | |
|
|
|
31.
|
A(n)
____ server is one that is programmed to appear to be a particular server when it is
another. a. | unauthorized | c. | rogue | b. | spoofed | d. | imposter | | | | |
|
|
|
32.
|
What
version of Kerberos is used by Windows XP?
|
|
|
33.
|
The
____ policy is the result of the combination of all group policies applicable to the
system. a. | grouped | c. | sum | b. | combined | d. | effective | | | | |
|
|
|
34.
|
What
are the sections of the Local Computer Policy snap-in? a. | User,
Security | c. | User,
Computer | b. | User, Groups | d. | User, Access | | | | |
|
|
|
35.
|
Most
third-party add-in application settings appear in the ____ node of the Local Computer
Policy. a. | Software
settings | c. | Application
settings | b. | Non-Microsoft settings | d. | Groups | | | | |
|
|
|
36.
|
A
folder must be on a(n) ____ file system to be encrypted using EFS. a. | FAT | c. | NTFS | b. | FAT32 | d. | SecureFS | | | | |
|
|
|
37.
|
IPSec
is configured and enabled on each system through the ____ tab of the Advanced TCP/IP Settings dialog
box. a. | Security | c. | General | b. | Option | d. | Advanced | | | | |
|
|
|
38.
|
The
____ policy is for systems that require secure communications at all times. a. | Secure
Server | c. | Client | b. | Server | d. | Network | | | | |
|
|
|
39.
|
____
are used to overwrite the Registry of a client or server system to force compliance with the group
policy. a. | Group policy
objects | c. | Registry
templates | b. | Group domain templates | d. | Administrative templates | | | | |
|
|
|
40.
|
In
the Local Computer Policy console, the ____ tab contains information about the meaning of policy
settings. a. | Help | c. | Explain | b. | Options | d. | Settings | | | | |
|
|
|
41.
|
The
act of ____ security checks a system’s current configuration against a selected security
template (or a composite of multiple templates) and produces a report of the
discrepancies. a. | analyzing | c. | verifying | b. | auditing | d. | testing | | | | |
|
|
|
42.
|
Once
enabled, the audited events are recorded in the Security log in ____. a. | System
Manager | c. | Log
Manager | b. | Event Viewer | d. | Audit Log | | | | |
|
|
|
43.
|
If
the ____ Registry setting value is set to 1, then when the Security log reaches capacity, only the
Administrator is allowed to logon to the system, and the only allowed activities are to clear the
Security log file or alter the log file size settings. a. | FlagFullLog | c. | ShutdownNoAudit | b. | AuditRequired | d. | CrashOnAuditFail | | | | |
|
|
|
44.
|
EFS
uses a ____ encryption method. a. | public and private key | c. | secret key | b. | shared
key | d. | digital
certificate | | | | |
|
|
|
45.
|
Windows XP includes a command-line tool called ____ for batch processing of
encryption. a. | Secedit | c. | CIPHER | b. | IPSec | d. | SECURE | | | | |
|
Matching
|
|
|
Match each term with the correct statement below: a. | Winlogon | f. | secedit | b. | domain controller | g. | objects | c. | shell | h. | automatic
account lockout | d. | SSL/TLS | i. | NTLM | e. | IPSec | j. | ACL | | | | |
|
|
|
46.
|
list
of permissions associated with a resource
|
|
|
47.
|
security measure added to TCP/IP to protect communications between two systems using
that protocol
|
|
|
48.
|
defines the environment inside which the user executes programs or spawns other
processes
|
|
|
49.
|
command-line version of the Security Configuration and Analysis tool
|
|
|
50.
|
process that produces the logon dialog box, where username, password, and domain are
selected
|
|
|
51.
|
Windows 2000 Server or Windows Server 2003 system with the Active Directory support
services installed and configured
|
|
|
52.
|
authentication mechanism used by Windows NT 4.0
|
|
|
53.
|
files, folders, processes, user accounts, printers, computers
|
|
|
54.
|
authentication scheme often used by Web-based applications
|
|
|
55.
|
disables a user account if a predetermined number of failed logon attempts occur
within a specified time limit
|