ITCertKing free update our training materials, which means you will always get the latest CAS-002 questions and answers. If CAS-002 questions and answers objectives change, The learning materials ITCertKing provided will follow the change. ITCertKing know the needs of each candidate, we will help you through your CAS-002 questions and answers.
We help each candidate to pass the exam with best price and highest quality.Exam Code: CAS-002
Exam Name: CompTIA Advanced Security Practitioner (CASP)
One year free update, No help, Full refund!
CAS-002 Practice Exam Total Q&A: 465 Questions and Answers
Last Update: 10-20,2016
CAS-002 Exam PDF Detail: CAS-002 Practice Exam
NO.1 A security administrator is tasked with implementing two-factor authentication for the
company VPN. The VPN is currently configured to authenticate VPN users against a backend RADIUS
server. New company policies require a second factor of authentication, and the Information Security
Officer has selected PKI as the second factor. Which of the following should the security
administrator configure and implement on the VPN concentrator to implement the second factor and
ensure that no error messages are displayed to the user during the VPN connection? (Select TWO).
A. The CA's certificate public key must be installed on the VPN concentrator.
B. The VPN concentrator's certificate private key must be installed on the VPN concentrator.
C. The VPN concentrator's certificate private key must be signed by the CA and installed on the VPN
concentrator.
D. The CA's certificate private key must be installed on the VPN concentrator.
E. The user's certificate private key must be installed on the VPN concentrator.
F. The user certificate private key must be signed by the CA.
Answer: A,B
CAS-002 Exam Cram
NO.2 A security architect is designing a new infrastructure using both type 1 and type 2 virtual
machines. In addition to the normal complement of security controls (e.g. antivirus, host hardening,
HIPS/NIDS) the security architect needs to implement a mechanism to securely store cryptographic
keys used to sign code and code modules on the VMs. Which of the following will meet this goal
without requiring any hardware pass-through implementations?
A. HSM
B. vTPM
C. INE
D. TPM
Answer: B
CAS-002 Questions and answers
NO.3 A security architect has been engaged during the implementation stage of the SDLC to review a
new HR software installation for security gaps. With the project under a tight schedule to meet
market commitments on project delivery, which of the following security activities should be
prioritized by the security architect? (Select TWO).
A. Secure code review of the HR solution to identify security gaps that could be exploited
B. Perform access control testing to ensure that privileges have been configured correctly
C. Determine if the information security standards have been complied with by the project
D. Perform penetration testing over the HR solution to identify technical vulnerabilities
E. Perform a security risk assessment with recommended solutions to close off high-rated risks
Answer: C,E
NO.4 Which of the following is an example of single sign-on?
A. A password is synchronized between multiple platforms and the user is required to authenticate
with the same password across each platform.
B. A web access control infrastructure performs authentication and passes attributes in a HTTP
header to multiple applications.
C. Multiple applications have been integrated with a centralized LDAP directory for authentication
and authorization. A user has to authenticate each time the user accesses an application.
D. An administrator manages multiple platforms with the same username and hardware token. The
same username and token is used across all the platforms.
Answer: B
CAS-002 Study Materials
ITCertKing's training materials include not only CompTIA certification CAS-002 dumps pdf which can consolidate your expertise, but also high degree of accuracy of practice questions and answers about CompTIA certification CAS-002 dumps pdf. ITCertKing can guarantee you passe the CompTIA certification CAS-002 dumps pdf with high score the even if you are the first time to participate in this exam.
Article Link: http://www.itcertking.com/CAS-002_exam.html