1. Home
  2. CompTIA
  3. SY0-501

CompTIA SY0-501 Online Practice Questions and Exam Preparation

SY0-501 Exam Details

  • Exam Code
    :SY0-501
  • Exam Name
    :CompTIA Security+
  • Certification
    :CompTIA Certifications
  • Vendor
    :CompTIA
  • Total Questions
    :1423 Q&As
  • Last Updated
    :Sep 04, 2023

CompTIA SY0-501 Online Questions & Answers

  • Question 791:

    A technician is implementing 802.1X with dynamic VLAN assignment based on a user Active Directory group membership. Which of the following configurations supports the VLAN definitions?

    A. RADIUS attribute
    B. SAML tag
    C. LDAP path
    D. Shibboleth IdP

  • Question 792:

    A call center company wants to implement a domain policy primarily for its shift workers. The call center has large groups with different user roles. Management wants to monitor group performance. Which of the following is the BEST solution for the company to implement?

    A. Reduced failed logon attempts
    B. Mandatory password changes
    C. Increased account lockout time
    D. Time-of-day restrictions

  • Question 793:

    A corporation is concerned that, if a mobile device is lost, any sensitive information on the device could be accessed by third parties. Which of the following would BEST prevent this from happening?

    A. Initiate remote wiping on lost mobile devices
    B. Use FDE and require PINs on all mobile devices
    C. Use geolocation to track lost devices
    D. Require biometric logins on all mobile devices

  • Question 794:

    A system administrator wants to provide for and enforce wireless access accountability during events where external speakers are invited to make presentations to a mixed audience of employees and non-employees. Which of the following should the administrator implement?

    A. Shared accounts
    B. Preshared passwords
    C. Least privilege
    D. Sponsored guest

  • Question 795:

    A security analyst investigate a report from an employee in the human resources (HR) department who is issues with Internal access. When the security analyst pull the UTM logs for the IP addresses in the HR group, the following activity is shown:

    Which of the following actions should the security analyst take?

    A. Ensure the HR employee is in the appropriate user group
    B. Allow port 8080 on the UTM for all outgoing traffic
    C. Disable the proxy settings on the HR employee's device.
    D. Edit the last line Of the ACL On the UTM lo: allow any any.

  • Question 796:

    Joe is exchanging encrypted email with another party. Joe encrypts the initial email with a key. When Joe receives a response, he is unable to decrypt the response with the same key he used initially. Which of the following would explain the situation?

    A. An ephemeral key was used for one of the messages
    B. A stream cipher was used for the initial email; a block cipher was used for the reply
    C. Out-of-band key exchange has taken place
    D. Asymmetric encryption is being used

  • Question 797:

    A security administrator is working with the human resources department to classify data held by the company. The administrator has determined the data contains a variety of data types, including health information, employee names and addresses, trade secrets, and confidential customer information. Which of the following should the security administrator do NEXT?

    A. Apply a predefined set of labels from government sources to all data within the company
    B. Create a custom set of data labels to group the data by sensitivity and protection requirements
    C. Label sensitive data according to age to comply with retention policies
    D. Destroy company information that is not labeled in compliance with government regulations and laws

  • Question 798:

    Confidential emails from an organization were posted to a website without the organization's knowledge. Upon investigation, it was determined that the emails were obtained from an internal actor who sniffed the emails in plain text. Which of the following protocols, if properly implemented, would have MOST likely prevented the emails from being sniffed? (Select TWO)

    A. Secure IMAP
    B. DNSSEC
    C. S/MIME
    D. SMTPS
    E. HTTPS

  • Question 799:

    An organization is drafting an IRP and needs to determine which employees have the authority to take systems offline during an emergency situation. Which of the following is being outlined?

    A. Reporting and escalation procedures
    B. Permission auditing
    C. Roles and responsibilities
    D. Communication methodologies

  • Question 800:

    After an identified security breach, an analyst is tasked to initiate the IR process. Which of the following is the NEXT step the analyst should take?

    A. Recovery
    B. Identification
    C. Preparation
    D. Documentation
    E. Escalation

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only CompTIA exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your SY0-501 exam preparations and CompTIA certification application, do not hesitate to visit our Vcedump.com to find your solutions here.