SY0-301 · Question #41
Use of group accounts should be minimized to ensure which of the following?
The correct answer is D. Individual accountability. Group accounts obscure which individual performed an action, making it impossible to hold any single user responsible for system activity.
Question
Use of group accounts should be minimized to ensure which of the following?
Options
- APassword security
- BRegular auditing
- CBaseline management
- DIndividual accountability
How the community answered
(50 responses)- A2% (1)
- B2% (1)
- C4% (2)
- D92% (46)
Why each option
Group accounts obscure which individual performed an action, making it impossible to hold any single user responsible for system activity.
Password security concerns protecting credentials from compromise, not tracing actions to individuals.
Regular auditing is a process applied separately from account type and is not what minimizing group accounts directly ensures.
Baseline management relates to configuration and performance standards, not to user account attribution.
Individual accountability requires that every action on a system be traceable to a specific, named user. When a group account is used, multiple people share the same credentials, so audit logs cannot attribute activity to a single person, eliminating accountability entirely.
Concept tested: Group accounts and individual accountability in access control
Source: https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/manage/understand-security-principals
Topics
Community Discussion
No community discussion yet for this question.