Security Concepts
What security principle provides users with only the access needed to perform their jobs and nothing more?
Least Privilege
What type of account can synchronize settings and profiles through an online portal?
Microsoft Account
What is Symmetric Encryption?
It is a type of encryption that uses a single key for both encryption and decryption
What is a Domain Controller?
A Domain Controller (DC) is a server that stores and manages Active Directory information, including user accounts, computers, groups, and security policies.
Example: When a user logs into a company network, the Domain Controller verifies their username and password.
What network type must be selected to make a computer discoverable and allow sharing?
Private Network
What is Implicit Deny?
It is a security rule denies all access unless an explicit rule allows it?
What is Windows Hello?
It is a windows feature that uses PINs, fingerprints, facial recognition, or security keys for sign-in
What type of encryption uses a different keys for both encryption and decryption?
Asymmetric Encryption
What are Security Groups?
Security Groups are collections of user accounts that are assigned the same permissions and access rights.
Example: All employees in the Finance department may be added to a Finance Security Group to access financial documents.
What is File Explorer?
File Explorer is the Windows application used to view, organize, manage, and access files, folders, drives, and network locations on a computer.
What is a Vulnerability?
weakness that could be exploited to cause damage or a security breach
What authentication method combines two or more factors to verify a user's identity?
Multifactor Authentication (MFA)
What is Hashing?
Hashing is the process of converting data of any size into a fixed-length value called a hash or digest. The hash does not contain the original data and is mainly used to verify that information has not been changed.
What is gpupdate?
gpupdate is a Windows command-line tool used to refresh and apply Group Policy settings immediately without waiting for the next automatic update.
It forces Windows to update Group Policy settings.
What is a Share Tab?
The Share Tab is a section in a folder's Properties window that allows users to configure file and folder sharing over a network.
What is Risk?
Risk is the likelihood that a threat will exploit a vulnerability and the potential impact or damage that could result.
Example: A computer with outdated antivirus software
What is User Account Control (UAC)?
User Account Control (UAC) is a Windows security feature that helps prevent unauthorized changes to the operating system by requiring approval before administrative actions are performed.
Example
If you try to:
What is a digital signature?
A Digital Signature is a security mechanism used to verify that a message, document, or digital certificate has not been altered and that it came from the claimed sender.
What is gpresult?
gpresult is a Windows command-line tool that displays the Group Policies currently applied to a user or computer.
What is Net Use?
net use is a Windows command-line tool used to connect to, disconnect from, and manage shared network resources such as network drives and printers.
What is Zero Trust?
Zero Trust is a security model that assumes no user, device, or application should be trusted automatically, even if they are inside the organization's network. Every access request must be verified before access is granted.
Example: An employee must authenticate with a password and a one-time code before accessing company resources.
What is net user?
net user is a Windows command-line tool used to view, create, modify, and manage user accounts on a local computer or domain.
What is key exchange?
Key Exchange is the process that allows two systems to securely exchange encryption keys so they can communicate privately.
Example: When you visit a secure website (HTTPS), your browser and the web server exchange encryption keys before sending encrypted data.
What is Organizational Unit (OU)?
An Organizational Unit (OU) is a container within Active Directory used to organize users, computers, and groups into logical categories.
Example: A company might create separate OUs for HR, Finance, IT, and Sales departments.
What is Explicit Deny?
Explicit Deny is a permission that directly blocks access to a resource. It takes precedence over any Allow permissions.