Top Refined SY0-401 free samples Tips!

Top Quality of SY0-401 vce materials and free samples for CompTIA certification for client, Real Success Guaranteed with Updated SY0-401 pdf dumps vce Materials. 100% PASS CompTIA Security+ Certification exam Today!

♥♥ 2017 NEW RECOMMEND ♥♥

Free VCE & PDF File for CompTIA SY0-401 Real Exam
(Full Version!)

★ Pass on Your First TRY ★ 100% Money Back Guarantee ★ Realistic Practice Exam Questions

Free Instant Download NEW SY0-401 Exam Dumps (PDF & VCE):
Available on:

2017 Apr SY0-401 Study Guide Questions:

Q11. Which of the following types of risk reducing policies also has the added indirect benefit of cross training employees when implemented? 

A. Least privilege 

B. Job rotation 

C. Mandatory vacations 

D. Separation of duties 

Answer: B 


A job rotation policy defines intervals at which employees must rotate through positions. Similar in purpose to mandatory vacations, it helps to ensure that the company does not become too dependent on one person and it does afford the company with the opportunity to place another person in that same job. 

Q12. Which of the following authentication services requires the use of a ticket-granting ticket (TGT) server in order to complete the authentication process? 


B. Secure LDAP 


D. Kerberos 

Answer: D 


The basic process of Kerberos authentication is as follows: 

The subject provides logon credentials. 

The Kerberos client system encrypts the password and transmits the protected credentials to the 


The KDC verifies the credentials and then creates a ticket-granting ticket (TGT—a hashed form of 

the subject’s password with the addition of a time stamp that indicates a valid lifetime). The TGT is 

encrypted and sent to the client. 

The client receives the TGT. At this point, the subject is an authenticated principle in the Kerberos 


The subject requests access to resources on a network server. This causes the client to request a 

service ticket (ST) from the KDC. 

The KDC verifies that the client has a valid TGT and then issues an ST to the client. The ST 

includes a time stamp that indicates its valid lifetime. 

The client receives the ST. 

The client sends the ST to the network server that hosts the desired resource. 

The network server verifies the ST. If it’s verified, it initiates a communication session with the 

client. From this point forward, Kerberos is no longer involved. 

Q13. A company's Chief Information Officer realizes the company cannot continue to operate after a disaster. Which of the following describes the disaster? 

A. Risk 

B. Asset 

C. Threat 

D. Vulnerability 

Answer: C 


SY0-401 download

Up to date SY0-401 practice exam:


The security administrator has installed a new firewall which implements an implicit DENY policy by default Click on the firewall and configure it to allow ONLY the following communication. 

1. The Accounting workstation can ONLY access the web server on the public network over the default HTTPS port. The accounting workstation should not access other networks. 

2. The HR workstation should be restricted to communicate with the Financial server ONLY, over the default SCP port 

3. The Admin workstation should ONLY be able to access the servers on the secure network over the default TFTP port. 

Instructions: The firewall will process the rules in a top-down manner in order as a first match The port number must be typed in and only one port number can be entered per rule Type ANY for all ports. The original firewall configuration can be reset at any time by pressing the reset button. Once you have met the simulation requirements, click save and then Done to submit. 


Q15. An IT auditor tests an application as an authenticated user. This is an example of which of the following types of testing? 

A. Penetration 

B. White box 

C. Black box 

D. Gray box 

Answer: D 


In this question, the tester is testing the application as an authenticated user. We can assume from this that the tester has at least limited knowledge of the application. This meets the criteria of a grey-box test. Gray box testing, also called gray box analysis, is a strategy for software debugging in which the tester has limited knowledge of the internal details of the program. A gray box is a device, program or system whose workings are partially understood. Gray box testing can be contrasted with black box testing, a scenario in which the tester has no knowledge or access to the internal workings of a program, or white box testing, a scenario in which the internal particulars are fully known. Gray box testing is commonly used in penetration tests. Gray box testing is considered to be non-intrusive and unbiased because it does not require that the tester have access to the source code. With respect to internal processes, gray box testing treats a program as a black box that must be analyzed from the outside. During a gray box test, the person may know how the system components interact but not have detailed knowledge about internal program functions and operation. A clear distinction exists between the developer and the tester, thereby minimizing the risk of personnel conflicts. 

Q16. Which of the following is a requirement when implementing PKI if data loss is unacceptable? 

A. Web of trust 

B. Non-repudiation 

C. Key escrow 

D. Certificate revocation list 

Answer: C 


Key escrow is a database of stored keys that later can be retrieved. Key escrow addresses the possibility that a third party may need to access keys. Under the conditions of key escrow, the keys needed to encrypt/decrypt data are held in an escrow account (think of the term as it relates to home mortgages) and made available if that third party requests them. The third party in question is generally the government, but it could also be an employer if an employee’s private messages have been called into question. 

SY0-401 pdf exam

Realistic SY0-401 questions pool:

Q17. After an audit, it was discovered that the security group memberships were not properly adjusted for employees’ accounts when they moved from one role to another. Which of the following has the organization failed to properly implement? (Select TWO). 

A. Mandatory access control enforcement. 

B. User rights and permission reviews. 

C. Technical controls over account management. 

D. Account termination procedures. 

E. Management controls over account management. 

F. Incident management and response plan. 

Answer: B,E 


Reviewing user rights and permissions can be used to determine that all groups, users, and other accounts have the appropriate privileges assigned according to the policies of the corporation and their job descriptions since they were all moved to different roles. Control over account management would have taken into account the different roles that employees have and adjusted the rights and permissions of these roles accordingly. 

Q18. Which of the following protocols uses an asymmetric key to open a session and then establishes a symmetric key for the remainder of the session? 





Answer: D 


SSL establishes a session using asymmetric encryption and maintains the session using symmetric encryption. 

Q19. Which of the following should be deployed to prevent the transmission of malicious traffic between virtual machines hosted on a singular physical device on a network? 

A. HIPS on each virtual machine 

B. NIPS on the network 

C. NIDS on the network 

D. HIDS on each virtual machine 

Answer: A 


Host-based intrusion prevention system (HIPS) is an installed software package which monitors a single host for suspicious activity by analyzing events occurring within that host. 

Q20. Which of the following relies on the use of shared secrets to protect communication? 


B. Kerberos 



Answer: A 


Obfuscated passwords are transmitted by the RADIUS protocol via a shared secret and the MD5 hashing algorithm.