Which protocol is typically used by directory services to query user authentication data?

Which tool allows users to authenticate once and gain access to multiple systems?

A failed MFA login due to GPS mismatch most likely used which factor?

What role does attestation play in identity and access management?

Which type of access control relies on system-enforced classifications like “Top Secret”?

Which is the greatest benefit of using passwordless authentication systems?

Why is group policy critical to operating system security in large environments?

In which scenario would attribute-based access control (ABAC) be preferred?

An attacker exploits credentials of multiple users without detection. Which control was likely missing?

How does password vaulting enhance security in privileged access management?

Which implementation enables SSO using web-based authentication between domains?

Which password policy best mitigates brute force attacks over time?

In a federated identity system, what component confirms a user’s identity across systems?

Which control method is used to ensure that access rights do not exceed what’s needed?

What does the use of ephemeral credentials improve?

Which factor is used in multifactor authentication involving a smart card?

What is the main concern when failing to de-provision a former employee's account?

In discretionary access control (DAC), who determines access to resources?

Why is time-of-day access control used in some environments?

A system that limits access based on defined policies and environmental conditions is using:

Which identity proofing process provides the strongest assurance?

What feature of OAuth enables secure third-party access without sharing user credentials?

What makes SAML a preferred choice for enterprise SSO implementations?

Which access control method is best for enforcing organizational policy with predefined job roles?

What is the main benefit of just-in-time (JIT) access for privileged accounts?