nerdexam
ExamsSY0-501Questions#157
CompTIACompTIA

SY0-501 · Question #157

SY0-501 Question #157: Real Exam Question with Answer & Explanation

The correct implementation requires understanding authentication factor categories: something you have (smart card, physical token), something you are (iris scanner/biometrics), and something you know (username/password/PIN/passphrase). Three-factor authentication in the CEO's of

Submitted by asante_acc· Mar 4, 2026CompTIA Security+ Domain 2: Architecture and Design / Identity and Access Management - specifically authentication methods, multi-factor authentication implementation, and wireless security protocols (maps to SY0-701 objective 2.4: Summarize authentication and authorization design concepts, and 3.1: Compare and contrast security implications of different architecture models including physical security controls and WAP security configurations).

Question

Lab Simulation You have just received some room and WiFi access control recommendations from a security consulting company. Click on each building to bring up available security controls. Please implement the following requirements: The Chief Executive Officer's (CEO) office had multiple redundant security measures installed on the door to the office. Remove unnecessary redundancies to deploy three-factor authentication, while retaining the expensive iris render. The Public Cafe has wireless available to customers. You need to secure the WAP with WPA and place a passphrase on the customer receipts. In the Data Center you need to include authentication from the "something you know" category and take advantage of the existing smartcard reader on the door. In the Help Desk Office you need to require single factor authentication through the use of physical tokens given to guests by the receptionist. The PII Office has redundant security measures in place. You need to eliminate the redundancy while maintaining three-factor authentication and retaining the more expensive controls. Instructions: The original security controls for each office can be reset at anytime by selecting the Reset button. Once you have met the above requirements for each office, select the Save button. When you have completed the entire simulation, please select the Done button to submit. Once the simulation is submitted, please select the Next button to continue. Answer:

Options

  • taskImplement the specified security control requirements for the CEO's office, Public Cafe, Data Center, Help Desk Office, and PII Processing Office within the simulation environment.
  • prerequisitesAccess to the simulation environment

Explanation

The correct implementation requires understanding authentication factor categories: something you have (smart card, physical token), something you are (iris scanner/biometrics), and something you know (username/password/PIN/passphrase). Three-factor authentication in the CEO's office requires one control from each category, retaining the iris scanner (biometric/something you are), adding a smart card (something you have), and username/password (something you know). The PII Office redundancy removal means keeping only one control per factor category, the Public Cafe requires WPA security with a shared passphrase (printed on receipts for open access), the Data Center needs a PIN or username/password (something you know) combined with the existing smartcard reader (something you have), and the Help Desk needs single-factor authentication via physical tokens (something you have) distributed by the receptionist.

Topics

#Multi-Factor Authentication#Authentication Factor Categories#Wireless Security (WPA)#Physical Access Controls

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full SY0-501 PracticeBrowse All SY0-501 Questions