SY0-401 Exam Details

  • Exam Code
    :SY0-401
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1789 Q&As
  • Last Updated
    :Dec 14, 2021

CompTIA SY0-401 Online Questions & Answers

  • Question 111:

    Various employees have lost valuable customer data due to hard drives failing in company provided laptops. It has been discovered that the hard drives used in one model of laptops provided by the company has been recalled by the manufactory, The help desk is only able to replace the hard drives after they fail because there is no centralized records of the model of laptop given to each specific user. Which of the following could have prevented this situation from occurring?

    A. Data backups
    B. Asset tracking
    C. Support ownership
    D. BYOD policies

  • Question 112:

    A technician is configuring a wireless guest network. After applying the most recent changes the technician finds the new devices can no longer find the wireless network by name but existing devices are still able to use the wireless network. Which of the following security measures did the technician MOST likely implement to cause this Scenario?

    A. Deactivation of SSID broadcast
    B. Reduction of WAP signal output power
    C. Activation of 802.1X with RADIUS
    D. Implementation of MAC filtering
    E. Beacon interval was decreased

  • Question 113:

    Which of the following is being tested when a company's payroll server is powered off for eight hours?

    A. Succession plan
    B. Business impact document
    C. Continuity of operations plan
    D. Risk assessment plan

  • Question 114:

    Ann, the security administrator, wishes to implement multifactor security. Which of the following should be implemented in order to compliment password usage and smart cards?

    A. Hard tokens
    B. Fingerprint readers
    C. Swipe badge readers
    D. Passphrases

  • Question 115:

    Pete, a security analyst, has been tasked with explaining the different types of malware to his colleagues. The two malware types that the group seems to be most interested in are botnets and viruses. Which of the following explains the difference between these two types of malware?

    A. Viruses are a subset of botnets which are used as part of SYN attacks.
    B. Botnets are a subset of malware which are used as part of DDoS attacks.
    C. Viruses are a class of malware which create hidden openings within an OS.
    D. Botnets are used within DR to ensure network uptime and viruses are not.

  • Question 116:

    Jane, a security administrator, has been tasked with explaining authentication services to the company's management team. The company runs an active directory infrastructure. Which of the following solutions BEST relates to the host authentication protocol within the company's environment?

    A. Kerberos
    B. Least privilege
    C. TACACS+
    D. LDAP

  • Question 117:

    A company needs to receive data that contains personally identifiable information. The company requires both the transmission and data at rest to be encrypted. Which of the following achieves this goal? (Select TWO).

    A. SSH
    B. TFTP
    C. NTLM
    D. TKIP
    E. SMTP
    F. PGP/GPG

  • Question 118:

    An employee finds a usb drive in the employee lunch room and plugs the drive into a shared workstation to determine who owns the drive. When the drive is inserted, a command prompt opens and a script begins to run. The employee notifies a technician who determines that data on a server have been compromised. This is an example of:

    A. Device removal
    B. Data disclosure
    C. Incident identification
    D. Mitigation steps

  • Question 119:

    On Monday, all company employees report being unable to connect to the corporate wireless network, which uses 802.1x with PEAP. A technician verifies that no configuration changes were made to the wireless network and its supporting infrastructure, and that there are no outages.

    Which of the following is the MOST likely cause for this issue?

    A. Too many incorrect authentication attempts have caused users to be temporarily disabled.
    B. The DNS server is overwhelmed with connections and is unable to respond to queries.
    C. The company IDS detected a wireless attack and disabled the wireless network.
    D. The Remote Authentication Dial-In User Service server certificate has expired.

  • Question 120:

    Which of the following delineates why it is important to perform egress filtering and monitoring on Internet connected security zones of interfaces on a firewall?

    A. Egress traffic is more important than ingress traffic for malware prevention
    B. To rebalance the amount of outbound traffic and inbound traffic
    C. Outbound traffic could be communicating to known botnet sources
    D. To prevent DDoS attacks originating from external network

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-401 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.