Question 1easymultiple choice
Read the full Access Controls explanation →SSCP Access Controls • Complete Question Bank
Complete SSCP Access Controls question bank — all 0 questions with answers and detailed explanations.
Drag steps to the numbered slots on the right, or tap a step then tap a slot.
Drag a concept onto its matching description — or click a concept then click the description.
Something you know
Something you have
Something you are
Something you do
Refer to the exhibit. The following is from a Windows security log: Event ID 4625 (Logon Failure) Account Name: multiple different usernames Source Network Address: 10.10.10.10 Failure Reason: Unknown user name or bad password. Multiple such entries appear within a short time span, each with a different username but the same source IP.
Refer to the exhibit. The following is from /var/log/secure on a Linux server: Jan 21 09:15:30 server sshd[1234]: Failed password for invalid user admin from 192.168.1.1 port 22 ssh2 Jan 21 09:15:31 server sshd[1235]: Failed password for invalid user root from 192.168.1.1 port 22 ssh2 ... (multiple similar lines) Jan 21 09:20:01 server su[5678]: pam_unix(su:session): session opened for user root by john(uid=1000) The failed attempts are all from the same IP, and then user 'john' successfully runs `su` to root.
Refer to the exhibit. The following IAM policy is attached to a user:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": "s3:GetObject",
"Resource": "arn:aws:s3:::corporate-data/*"
},
{
"Effect": "Deny",
"Action": "s3:PutObject",
"Resource": "arn:aws:s3:::corporate-data/*"
}
]
}Event 4625, Microsoft-Windows-Security-Auditing
Account For Which Logon Failed:
Security ID: S-1-5-21-123456789-123456789-123456789-1105
Account Name: jdoe
Account Domain: CORP
Failure Information:
Failure Reason: The user has not been granted the requested logon type at this computer.
Status: 0xC000015B
Sub Status: 0x0[user@server ~]$ getfacl /data/project # file: /data/project getfacl: Removing leading '/' from absolute path names # owner: projectadmin # group: projectdev user::rwx user:alice:rwx group::r-x mask::rwx other::---
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Deny",
"Action": "s3:DeleteObject",
"Resource": "arn:aws:s3:::corporate-bucket/*",
"Condition": {
"StringNotEquals": {
"s3:x-amz-server-side-encryption": "AES256"
}
}
},
{
"Effect": "Allow",
"Action": "s3:DeleteObject",
"Resource": "arn:aws:s3:::corporate-bucket/*"
}
]
}