SY0-401 Exam - Free CompTIA Questions and Answers

Question #1 (Topic: Topic 1)

A security architect wishes to implement a wireless network with connectivity to the
companys internal network. Before they inform all employees that this network is being put
in place, the architect wants to roll it out to a small test segment. Which of the following
allows for greater secrecy about this network during this initial phase of implementation?

A. Disabling SSID broadcasting B. Implementing WPA2 - TKIP C. Implementing WPA2 - CCMP D. Filtering test workstations by MAC address

Answer: A

Question #2 (Topic: Topic 1)

Ann, a technician, is attempting to establish a remote terminal session to an end users
computer using Kerberos authentication, but she cannot connect to the destination
machine. Which of the following default ports should Ann ensure is open?

A. 22 B. 139 C. 443 D. 3389

Answer: D

Question #3 (Topic: Topic 1)

Configuring the mode, encryption methods, and security associations are part of which of
the following?

A. IPSec B. Full disk encryption C. 802.1x D. PKI

Answer: A

Question #4 (Topic: Topic 1)

A network engineer is setting up a network for a company. There is a BYOD policy for the
employees so that they can connect their laptops and mobile devices.
Which of the following technologies should be employed to separate the administrative
network from the network in which all of the employees devices are connected?

A. VPN B. VLAN C. WPA2 D. MAC filtering

Answer: B

Question #5 (Topic: Topic 1)

Signed digital certificates used to secure communication with a web server are MOST
commonly associated with which of the following ports?

A. 25 B. 53 C. 143 D. 443

Answer: D

CompTIA SY0-401 - CompTIA Security+ Certification Exam