1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 1301:

    A security engineer is analyzing the following line of JavaScript code that was found in a comment field on a web forum, which was recently involved in a security breach:

    Given the line of code above, which of the following BEST represents the attack performed during the breach?

    A. CSRF
    B. DDoS
    C. Dos
    D. XSS

  • Question 1302:

    A company offers SaaS, maintaining all customers' credentials and authenticating locally. Many large customers have requested the company offer some form of federation with their existing authentication infrastructures. Which of the following would allow customers to manage authentication and authorizations from within their existing organizations?

    A. Implement SAML so the company's services may accept assertions from the customers' authentication servers.
    B. Provide customers with a constrained interface to manage only their users' accounts in the company's active directory server.
    C. Provide a system for customers to replicate their users' passwords from their authentication service to the company's.
    D. Use SOAP calls to support authentication between the company's product and the customers' authentication servers.

  • Question 1303:

    When identifying a company's most valuable assets as part of a BIA, which of the following should be the FIRST priority?

    A. Life
    B. Intellectual property
    C. Sensitive data
    D. Public reputation

  • Question 1304:

    Multiple organizations operating in the same vertical want to provide seamless wireless access for their employees as they visit the other organizations. Which of the following should be implemented if all the organizations use the native 802.1x client on their mobile devices?

    A. Shibboleth
    B. RADIUS federation
    C. SAML
    D. OAuth
    E. OpenID connect

  • Question 1305:

    Ann, a security administrator, wants to ensure credentials are encrypted in transit when implementing a RADIUS server for SSO. Which of the following are needed given these requirements? (Select TWO)

    A. Public key
    B. Shared key
    C. Elliptic curve
    D. MD5
    E. Private key
    F. DES

  • Question 1306:

    An administrator is setting up automated remote file transfers to another organization. The other organization has the following requirements for the connection protocol:

    Encryption in transit is required.

    Mutual authentication must be used.

    Certificate authentication must be used (no passwords).

    Which of the following should the administrator choose?

    A. SNMPv3
    B. SFTP
    C. TLS
    D. LDAPS
    E. SRTP

  • Question 1307:

    A systems administrator is deploying a new mission essential server into a virtual environment. Which of the following is BEST mitigated by the environment's rapid elasticity characteristic?

    A. Data confidentiality breaches
    B. VM escape attacks
    C. Lack of redundancy
    D. Denial of service

  • Question 1308:

    A systems administrator is increasing the security settings on a virtual host to ensure users on one VM cannot access information from another VM. Which of the following is the administrator protecting against?

    A. VM sprawl
    B. VM escape
    C. VM migration
    D. VM sandboxing

  • Question 1309:

    Which of the following threats has sufficient knowledge to cause the MOST danger to an organization?

    A. Competitors
    B. Insiders
    C. Hacktivists
    D. Script kiddies

  • Question 1310:

    An organization prefers to apply account permissions to groups and not individual users, but allows for exceptions that are justified. Some systems require a machine-to-machine data exchange and an associated account to perform this data exchange. One particular system has data in a folder that must be modified by another system. No user requires access to this folder; only the other system needs access to this folder. Which of the following is the BEST account management practice?

    A. Create a service account and apply the necessary permissions directly to the service account itself
    B. Create a service account group, place the service account in the group, and apply the permissions on the group
    C. Create a guest account and restrict the permissions to only the folder with the data.
    D. Create a generic account that will only be used for accessing the folder, but disable the account until it is needed for the data exchange
    E. Create a shared account that administrators can use to exchange the data but audit the shared account activity.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.