After an employee successfully signs in to a file-sharing portal, the portal checks whether the employee can upload files to a specific project folder. Which AAA concept is being used?

Authentication, because the user proved their identity with credentials.

Authentication confirms identity, but that step already happened when the employee signed in to the portal.

Accounting, because the portal is recording the folder permissions for later review.

Accounting is the logging and tracking of user activity, such as who accessed a folder and when, not the permission decision itself.

Nonrepudiation, because the portal proves the user cannot deny uploading a file.

Nonrepudiation is about proving an action occurred and tying it to a specific actor, usually with logging or cryptographic evidence, not checking access rights.

What does this SY0-701 question test?

Authentication checks who the user is.

What is the correct answer to this question?

The correct answer is: Authorization, because the system is deciding what the signed-in user is allowed to do. — Authorization is the AAA function that decides what an authenticated user can do. Since the portal already knows who the employee is, the next step is checking whether that identity has permission to upload to the project folder. This distinction matters because organizations often secure sign-in separately from access control. A user can be authenticated but still blocked from specific actions. Why others are wrong: Authentication happens at sign-in, before the portal checks folder access. Accounting is the recordkeeping side of AAA and would involve logging the action, not deciding whether it is allowed. Nonrepudiation provides proof of action or origin, but it is not the process of granting or denying access to a folder.

What should I do if I get this SY0-701 question wrong?

Then try more questions from the same exam bank and focus on understanding why the wrong options are tempting.