What are the 5 tasks of IAM?
Identity and Access Management (IAM):
- Create and deprovision accounts
- Manage accounts
- Audit accounts
- Evaluate identity-based threats
- Maintain compliance
What are the 5 subjects that can have user accounts?
- Personell
- Endpoints
- Servers
- Softwares
- Roles
What are the 5 types of factors for MFA?
- Knowledge: Username, Password etc.
- Possesion: Smart Card, Key etc
- Inherence: Fingerprints, Retina Scan
- Action: How you sign your name
- Location: Geotagging, Geofencing
What are the 8 most important types of authentication?
- Local Authentication
- Ligthweight Directory Access Protocol (LDAP)
- Kerberos
- Single Sign-On (SSO)
- Security Assertion Markup Language (SAML)
- RADIUS
- TACACS+ (Cisco only)
- Time Based Authentication / OTP
What are the 3 types of access control policies?
- Discretionairy Access Control (DAC): The owner of a ressource decides who has access
- Mandatory Access Controll (MAC): Different access levels are defined, you can access a ressource if you have the same or a higher level
- Role Based Access Control (RBAC): Different roles are created like Sales, HR, IT etc.
What are the 3 states of data?
- Data at rest
- Data in transit/motion
- Data in processing
What 4 security features does IPSec provide and how?
- Confidentiality: By using data encryption
- Integrity: By ensuring data wasnt modified through hashes
- Authentication: Verify each party is who they claim to be
- Anti-Replay: By checking sequence numbers on packets
What are the 5 steps of the IPSec tunnel creation?
- Key Exchange Request
- Internet Key Exchange (IKE) Phase 1
- Internet Key Exchange (IKE) Phase 2
- Data Transfer
- Tunnel Termination
What is the Diffie-Hellman Key Exchange?
It allows two systems that dont know each other to excahnge keys and then trust each other. This happens by creating a shared secret key.
Whats the difference between Transport and Tunneling Mode in IPSec?
Transport Mode: Uses packets original IP header, best for Client-to-Site VPNs
Tunneling Mode: Encapsulates the entire packet and puts another header on it. Thats best for Site-to-Site VPNs.
What are the AH and ESP in IPSec?
The Authentication Header (AH) provides connectionless data integrity and protection against replay attacks.
The Encapsulating Security Payload (ESP) provides authentication, integrity, replay protection and data confidentiality.
What is PKI?
Public Key Infrastructure (PKI) is the system used to create Public/Private Key Pairs used in assymetric encryption.
What are self-signed certificates?
Certificates that are issued by the same person it validates, thus they dont give a lot of trust but are mostly used for encryption or personal use.
-
Network Fundamentals20
-
OSI Model23
-
Ports and Protocols20
-
Media and Connectors31
-
Distribution Systems14
-
Wireless Networks25
-
Ethernet Switching28
-
IP Addressing26
-
Routing15
-
Network Services16
-
Wide Area Networks10
-
Cloud and Datacenters20
-
Network Security Fundamentals10
-
Network Attacks12
-
Logical Security13
-
Network Segmentation14
-
Network Monitoring15
-
Orchestration and Automation10
-
Documentation and Processes7
-
Disaster Recovery8
-
Troubleshooting Methodology5
-
Troubleshooting Tools13
-
Troubleshooting Physical Networks22
-
Troubleshooting Wireless Issues12
-
Ports18
-
Extra Questions24
-
Extra Questions 217
-
Troubleshooting Network Services14
-
Extra Questions 317
-
Troubleshooting Performace Issues6
