1. Home
  2. CompTIA
  3. RC0-501

CompTIA RC0-501 Online Practice Questions and Exam Preparation

RC0-501 Exam Details

  • Exam Code
    :RC0-501
  • Exam Name
    :CompTIA Security+ Recertification Exam
  • Certification
    :CompTIA Security+
  • Vendor
    :CompTIA
  • Total Questions
    :349 Q&As
  • Last Updated
    :May 24, 2026

CompTIA RC0-501 Online Questions & Answers

  • Question 181:

    A security administrator has been asked to implement a VPN that will support remote access over IPSEC. Which of the following is an encryption algorithm that would meet this requirement?

    A. MD5
    B. AES
    C. UDP
    D. PKI

  • Question 182:

    A security administrator discovers that an attack has been completed against a node on the corporate network. All available logs were collected and stored.

    You must review all network logs to discover the scope of the attack, check the box of the node(s) that have been compromised and drag and drop the appropriate actions to complete the incident response on the network. The environment is

    a critical production environment; perform the LEAST disruptive actions on the network, while still performing the appropriate incident responses.

    Instructions: The web server, database server, IDS, and User PC are clickable. Check the box of the node(s) that have been compromised and drag and drop the appropriate actions to complete the incident response on the network. Not all

    actions may be used, and order is not important. If at anytime you would like to bring back the initial state of the simulation, please select the Reset button. When you have completed the simulation, please select the Done button to submit.

    Once the simulation is submitted, please select the Next button to continue.

    Correct Answer. Check the answer below:

  • Question 183:

    A mobile device user is concerned about geographic positioning information being included in messages sent between users on a popular social network platform. The user turns off the functionality in the application, but wants to ensure the

    application cannot re-enable the setting without the knowledge of the user.

    Which of the following mobile device capabilities should the user disable to achieve the stated goal?

    A. Device access control
    B. Location based services
    C. Application control
    D. GEO-Tagging

  • Question 184:

    An employee uses RDP to connect back to the office network. If RDP is misconfigured, which of the following security exposures would this lead to?

    A. A virus on the administrator's desktop would be able to sniff the administrator's username and password.
    B. Result in an attacker being able to phish the employee's username and password.
    C. A social engineering attack could occur, resulting in the employee's password being extracted.
    D. A man in the middle attack could occur, resulting the employee's username and password being captured.

  • Question 185:

    Despite having implemented password policies, users continue to set the same weak passwords and reuse old passwords. Which of the following technical controls would help prevent these policy violations? (Select two.)

    A. Password expiration
    B. Password length
    C. Password complexity
    D. Password history
    E. Password lockout

  • Question 186:

    A company is using a mobile device deployment model in which employees use their personal devices for work at their own discretion. Some of the problems the company is encountering include the following:

    There is no standardization.

    Employees ask for reimbursement for their devices.

    Employees do not replace their devices often enough to keep them running efficiently.

    The company does not have enough control over the devices.

    Which of the following is a deployment model that would help the company overcome these problems?

    A. BYOD
    B. VDI
    C. COPE
    D. CYOD

  • Question 187:

    A company exchanges information with a business partner. An annual audit of the business partner is conducted against the SLA in order to verify:

    A. Performance and service delivery metrics
    B. Backups are being performed and tested
    C. Data ownership is being maintained and audited
    D. Risk awareness is being adhered to and enforced

  • Question 188:

    While reviewing the monthly internet usage it is noted that there is a large spike in traffic classified as "unknown" and does not appear to be within the bounds of the organizations Acceptable Use Policy. Which of the following tool or technology would work BEST for obtaining more information on this traffic?

    A. Firewall logs
    B. IDS logs
    C. Increased spam filtering
    D. Protocol analyzer

  • Question 189:

    A security analyst wishes to increase the security of an FTP server. Currently, all trails to the FTP server is unencrypted. Users connecting to the FTP server use a variety of modem FTP client software. The security analyst wants to keep the

    same port and protocol, while also still allowing unencrypted connections.

    Which of the following would BEST accomplish these goals?

    A. Require the SFTP protocol to connect to the file server.
    B. Use implicit TLS on the FTP server.
    C. Use explicit FTPS for the connections.
    D. Use SSH tunneling to encrypt the FTP traffic.

  • Question 190:

    An organization's internal auditor discovers that large sums of money have recently been paid to a vendor that management does not recognize. The IT security department is asked to investigate the organizations the organization's ERP

    system to determine how the accounts payable module has been used to make these vendor payments.

    The IT security department finds the following security configuration for the accounts payable module:

    New Vendor Entry ?Required Role: Accounts Payable Clerk

    New Vendor Approval ?Required Role: Accounts Payable Clerk Vendor Payment Entry ?Required Role: Accounts Payable Clerk Vendor Payment Approval ?Required Role: Accounts Payable Manager

    Which of the following changes to the security configuration of the accounts payable module would BEST mitigate the risk?

    A. Option A
    B. Option B
    C. Option C
    D. Option D

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your RC0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.