Quiz: IAM & Account Management
Updated
•2 min readI
Building a Cybersecurity foundation
- A technician is removing all access for an employee who was terminated this morning. What is this process called?
A) Provisioning
B) Maintenance
C) Deprovisioning
D) Federation
- Which protocol is primarily used for exchanging authentication and authorization data between an Identity Provider and a Service Provider in a web-based SSO environment?
A) ABAC
B) SAML
C) MAC
D) Kerberos
- An organization uses a system where a user's access is determined by their department, time of day, and geographic location. Which access control model is this?
A) RBAC
B) DAC
C) MAC
D) ABAC
- What is the main security risk of "Permission Creep"?
A) Users gain too many privileges over time as they change jobs, violating Least Privilege.
B) Users forget their passwords too often.
C) The server runs out of storage space for new accounts.
D) SSO tokens expire too quickly.
- Using a fingerprint scan alongside a password to log in is an example of what?
A) Single-factor authentication
B) Dual-factor authentication (MFA)
C) Federation
D) Account Provisioning
Answer Key
C (Deprovisioning)
B (SAML - specifically for web SSO)
D (ABAC - uses multiple "attributes")
A (Violation of Least Privilege)
B (MFA - Something you are + Something you know)