IDENTITY AND ACCESS MANAGEMENT
(DOMAIN 5) COMPLETE STUDY GUIDE 2026
| QUESTIONS & ANSWERS
| GRADED A+ | GUARANTEED SUCCESS
Updated 2026 Questions and Answers
100% Verified Exam Prep and Comprehensive
Rationales Included
,1. Which of the following is best decribed as an access C. A capability table
control model that focuses on subjects and identifies the
objects that each subject can access?
A. An access control list
B. An implicit denial list
C. A capability table
D. A rights management matrix
2. Jim's organization-wide implementation of IDaaS offers B. Use an on-premise third-party identity service.
broad support for cloud-based applications. The existing
infrastructure for Jim's company does not use centralized
identity services but uses Active Directory for AAA
services. Which of the following choices is the best
option to recommend to handle the company's onsite
identity needs?
A. Integrate onsite systems using OAuth.
B. Use an on-premise third-party identity service.
C. Integrate onsite systems using SAML.
D. Design an in-house solution to handle the
organization's unique needs.
, 3. What of the following is not a weakness in Kerberos? C. Authentication information is not encrypted.
A. The KDC is a single point of failure.
B. Compromise of the KDC would allow attackers to
impersonate any user.
C. Authentication information is not encrypted.
D. It is susceptible to password guessing.
4. Voice pattern recognition is what type of C. Type 3
authentication factor?
A. Type 1
B. Type 2
C. Type 3
D. Type 4
5. If Susan's organization requires her to log in with her B. Two
username, a PIN, a password, and a retina scan, how
many distinct types of factor has she used?
A. One
B. Two
C. Three
4. Four
6.Which of the following items are not commonly B. Keyboards
associated with restricted interfaces?
A. Shells
B. Keyboards
C. Menus
D. Database views