1. Home
  2. CompTIA
  3. CAS-002

CompTIA CAS-002 Online Practice Questions and Exam Preparation

CAS-002 Exam Details

  • Exam Code
    :CAS-002
  • Exam Name
    :CompTIA Advanced Security Practitioner (CASP+)
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :733 Q&As
  • Last Updated
    :Jan 22, 2024

CompTIA CAS-002 Online Questions & Answers

  • Question 311:

    During a new desktop refresh, all hosts are hardened at the OS level before deployment to comply with policy. Six months later, the company is audited for compliance to regulations. The audit discovers that 40% of the desktops do not meet requirements. Which of the following is the cause of the noncompliance?

    A. The devices are being modified and settings are being overridden in production.
    B. The patch management system is causing the devices to be noncompliant after issuing the latest patches.
    C. The desktop applications were configured with the default username and password.
    D. 40% of the devices have been compromised.

  • Question 312:

    A financial company implements end-to-end encryption via SSL in the DMZ, and only IPSec in transport mode with AH enabled and ESP disabled throughout the internal network. The company has hired a security consultant to analyze the network infrastructure and provide a solution for intrusion prevention. Which of the following recommendations should the consultant provide to the security administrator?

    A. Switch to TLS in the DMZ. Implement NIPS on the internal network, and HIPS on the DMZ.
    B. Switch IPSec to tunnel mode. Implement HIPS on the internal network, and NIPS on the DMZ.
    C. Disable AH. Enable ESP on the internal network, and use NIPS on both networks.
    D. Enable ESP on the internal network, and place NIPS on both networks.

  • Question 313:

    A security consultant is conducting a network assessment and wishes to discover any legacy backup Internet connections the network may have. Where would the consultant find this information and why would it be valuable?

    A. This information can be found in global routing tables, and is valuable because backup connections typically do not have perimeter protection as strong as the primary connection.
    B. This information can be found by calling the regional Internet registry, and is valuable because backup connections typically do not require VPN access to the network.
    C. This information can be found by accessing telecom billing records, and is valuable because backup connections typically have much lower latency than primary connections.
    D. This information can be found by querying the network's DNS servers, and is valuable because backup DNS servers typically allow recursive queries from Internet hosts.

  • Question 314:

    Which of the following is a security advantage of single sign-on? (Select TWO).

    A. Users only have to remember one password.
    B. Applications need to validate authentication tokens.
    C. Authentication is secured by the certificate authority.
    D. Less time and complexity removing user access.
    E. All password transactions are encrypted.

  • Question 315:

    An administrator wants to virtualize the company's web servers, application servers, and database servers. Which of the following should be done to secure the virtual host machines? (Select TWO).

    A. Establish VLANs for each virtual guest's NIC on the virtual switch.
    B. Enable virtual switch layer 2 security precautions.
    C. Only access hosts through a secure management interface.
    D. Distribute guests to hosts by application role or trust zone.
    E. Restrict physical and network access to the host console.

  • Question 316:

    CORRECT TEXT

    An administrator wants to install a patch to an application. Given the scenario, download, verify and install the patch in the most secure manner.

    Instructions: The last install that is completed will be the final submission.

  • Question 317:

    An organization determined that each of its remote sales representatives must use a smartphone for email access.

    The organization provides the same centrally manageable model to each person.

    Which of the following mechanisms BEST protects the confidentiality of the resident data?

    A. Require dual factor authentication when connecting to the organization's email server.
    B. Require each sales representative to establish a PIN to access the smartphone and limit email storage to two weeks.
    C. Require encrypted communications when connecting to the organization's email server.
    D. Require a PIN and automatic wiping of the smartphone if someone enters a specific number of incorrect PINs.

  • Question 318:

    A network security engineer would like to allow authorized groups to access network devices with a shell restricted to only show information while still authenticating the administrator's group to an unrestricted shell. Which of the following can be configured to authenticate and enforce these shell restrictions? (Select TWO).

    A. Single Sign On
    B. Active Directory
    C. Kerberos
    D. NIS+
    E. RADIUS
    F. TACACS+

  • Question 319:

    There have been some failures of the company's customer-facing website. A security engineer has analyzed the root cause to be the WAF. System logs show that the WAF has been down for 14 total hours over the past month in four separate situations. One of these situations was a two hour scheduled maintenance activity aimed to improve the stability of the WAF. Which of the following is the MTTR, based on the last month's performance figures?

    A. 3 hours
    B. 3.5 hours
    C. 4 hours
    D. 4.666 hours

  • Question 320:

    An IT administrator has been tasked by the Chief Executive Officer with implementing security using a single device based on the following requirements:

    1.

    Selective sandboxing of suspicious code to determine malicious intent.

    2.

    VoIP handling for SIP and H.323 connections.

    3.

    Block potentially unwanted applications.

    Which of the following devices would BEST meet all of these requirements?

    A. UTM
    B. HIDS
    C. NIDS
    D. WAF
    E. HSM

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your CAS-002 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.