nerdexam
CompTIA

SY0-301 · Question #41

Use of group accounts should be minimized to ensure which of the following?

The correct answer is D. Individual accountability. Group accounts obscure which individual performed an action, making it impossible to hold any single user responsible for system activity.

Security operations

Question

Use of group accounts should be minimized to ensure which of the following?

Options

  • APassword security
  • BRegular auditing
  • CBaseline management
  • DIndividual accountability

How the community answered

(50 responses)
  • A
    2% (1)
  • B
    2% (1)
  • C
    4% (2)
  • D
    92% (46)

Why each option

Group accounts obscure which individual performed an action, making it impossible to hold any single user responsible for system activity.

APassword security

Password security concerns protecting credentials from compromise, not tracing actions to individuals.

BRegular auditing

Regular auditing is a process applied separately from account type and is not what minimizing group accounts directly ensures.

CBaseline management

Baseline management relates to configuration and performance standards, not to user account attribution.

DIndividual accountabilityCorrect

Individual accountability requires that every action on a system be traceable to a specific, named user. When a group account is used, multiple people share the same credentials, so audit logs cannot attribute activity to a single person, eliminating accountability entirely.

Concept tested: Group accounts and individual accountability in access control

Source: https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/manage/understand-security-principals

Topics

#group accounts#individual accountability#access control#account management

Community Discussion

No community discussion yet for this question.

Full SY0-301 Practice