[Free] EnsurePass CompTIA SY0-501 Real Exam Dumps Questions 1-10

Get Full Version of the Exam

Question No.1

An organization finds that most help desk calls are regarding account lockout due to a variety of applications running on different systems. Management is looking for a solution to reduce the number of account lockouts while improving security. Which of the following is the BEST solution for this organization?

  1. Create multiple application accounts for each user.

  2. Provide secure tokens.

  3. Implement SSO.

  4. Utilize role-based access control.

Correct Answer: C

Question No.2

Malicious traffic from an internal network has been detected on an unauthorized port on an application server. Which of the following network-based security controls should the engineer consider implementing?

  1. ACLs

  2. HIPS

  3. NAT

  4. MAC filtering

Correct Answer: A

Question No.3

A systems administrator is attempting to recover from a catastrophic failure in the datacenter. To recover the domain controller, the systems administrator needs to provide the domain administrator credentials. Which of the following account types is the systems administrator using?

  1. Shared account

  2. Guest account

  3. Service account

  4. User account

Correct Answer: C

Question No.4

Which of the following attack types BEST describes a client-side attack that is used to manipulate an HTML iframe with JavaScript code via a web browser?

  1. Buffer overflow

  2. MITM

  3. XSS

  4. SQLi

Correct Answer: C

Question No.5

Which of the following technologies employ the use of SAML? (Select two.)

  1. Single sign-on

  2. Federation

  3. LDAP

  4. Secure token


Correct Answer: AB

Question No.6

A security analyst is hardening a server with the directory services role installed. The analyst must ensure LDAP traffic cannot be monitored or sniffed and maintains compatibility with LDAP clients. Which of the following should the analyst implement to meet these requirements? (Select two.)

  1. Generate an X.509-compliant certificate that is signed by a trusted CA.

  2. Install and configure an SSH tunnel on the LDAP server.

  3. Ensure port 389 is open between the clients and the servers using the communication.

  4. Ensure port 636 is open between the clients and the servers using the communication.

  5. Remote the LDAP directory service role from the server.

Correct Answer: AD

Question No.7

A department head at a university resigned on the first day of the spring semester. It was subsequently determined that the department head deleted numerous files and directories from the server-based home directory while the campus was closed. Which of the following policies or procedures could have prevented this from occurring?

  1. Time-of-day restrictions

  2. Permission auditing and review

  3. Offboarding

  4. Account expiration

Correct Answer: C

Question No.8

Which of the following cryptographic attacks would salting of passwords render ineffective?

  1. Brute force

  2. Dictionary

  3. Rainbow tables

  4. Birthday

Correct Answer: C

Question No.9


Drag the items on the left to show the different types of security for the shown devices. Not all fields need to be filled. Not all items need to be used.


Correct Answer:


Question No.10

A systems administrator is reviewing the following information from a compromised server:


Given the above information, which of the following processes was MOST likely exploited via a remote buffer overflow attack?

  1. Apache

  2. LSASS

  3. MySQL

  4. TFTP

Correct Answer: A

Get Full Version of the Exam
SY0-501 Dumps
SY0-501 VCE and PDF