1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 1081:

    An organization finds that most help desk calls are regarding account lockout due to a variety of applications running on different systems. Management is looking for a solution to reduce the number of account lockouts while improving security. Which of the following is the BEST solution for this organization?

    A. Create multiple application accounts for each user.
    B. Provide secure tokens.
    C. Implement SSO.
    D. Utilize role-based access control.

  • Question 1082:

    A small enterprise decides to implement a warm site to be available for business continuity in case of a disaster. Which of the following BEST meets its requirements?

    A. A fully operational site that has all the equipment in place and full data backup tapes on site
    B. A site used for its data backup storage that houses a full-time network administrator
    C. An operational site requiring some equipment to be relocated as well as data transfer to the site
    D. A site staffed with personnel requiring both equipment and data to be relocated there in case of disaster

  • Question 1083:

    Which of the following encryption algorithms require one encryption key? (Choose two.)

    A. MD5
    B. 3DES
    C. BCRYPT
    D. RC4
    E. DSA

  • Question 1084:

    A systems administrator is configuring a new network switch for TACACS+ management and authentication. Which of the following must be configured to provide authentication between the switch and the TACACS+ server?

    A. 802.1X
    B. SSH
    C. Shared secret
    D. SNMPv3
    E. CHAP

  • Question 1085:

    An analyst wants to implement a more secure wireless authentication for office access points. Which of the following technologies allows for encrypted authentication of wireless clients over TLS?

    A. PEAP
    B. EAP
    C. WPA2
    D. RADIUS

  • Question 1086:

    Joe, a backup administrator, wants to implement a solution that will reduce the restoration time of physical servers. Which of the following is the BEST method for Joe to use?

    A. Differential
    B. Incremental
    C. Full
    D. Snapshots

  • Question 1087:

    During a routine check, a security analyst discovered the script responsible for the backup of the corporate file server had been changed to the following.

    Which of the following BEST describes the type of malware the analyst discovered?

    A. Key logger
    B. Rootkit
    C. RAT
    D. Logic bomb

  • Question 1088:

    A security administrator wants to implement a company-wide policy to empower data owners to manage and enforce access control rules on various resources. Which of the following should be implemented?

    A. Mandatory access control
    B. Discretionary access control
    C. Role based access control
    D. Rule-based access control

  • Question 1089:

    A coffee company, which operates a chain of stores across a large geographical area, is deploying tablets to use as point-of-sale devices. A security consultant has been given the following requirements:

    The cashiers must be able to log in to the devices quickly.

    The devices must be compliant with applicable regulations for credit card usage.

    The risk of loss or theft of the devices must be minimized.

    If devices are lost or stolen, all data must be removed from the device.

    The devices must be capable of being managed from a centralized location.

    Which of the following should the security consultant configure in the MDM polices for the tablets? (Choose two.)

    A. Remote wipe
    B. Cable locks
    C. Screen locks
    D. Geofencing
    E. GPS tagging
    F. Carrier unlocking

  • Question 1090:

    A coding error has been discovered on a customer-facing website. The error causes each request to return confidential PHI data for the incorrect organization. The IT department is unable to identify the specific customers who are affected. As a result, all customers must be notified of the potential breach. Which of the following would allow the team to determine the scope of future incidents?

    A. Intrusion detection system
    B. Database access monitoring
    C. Application fuzzing
    D. Monthly vulnerability scans

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.