SY0-501 Question #280: Real Exam Question with Answer & Explanation

Question

A security administrator is evaluating three different services: radius, diameter, and Kerberos. Which of the following is a feature that is UNIQUE to Kerberos?

Options

• AIt provides authentication services
• BIt uses tickets to identify authenticated users
• CIt provides single sign-on capability
• DIt uses XML for cross-platform interoperability

Explanation

The question asks for a feature unique to Kerberos when compared to RADIUS and Diameter, focusing on its distinct authentication mechanism.

Common mistakes.

• A. RADIUS and Diameter also provide authentication services, making this feature not unique to Kerberos.
• C. While Kerberos provides single sign-on, RADIUS and Diameter can also be integral components in implementing SSO solutions, meaning it is not unique to Kerberos.
• D. Kerberos does not primarily use XML for its core operations or cross-platform interoperability; Diameter, however, can use XML for certain attribute definitions, making this statement inaccurate for Kerberos and not a unique feature anyway.

Concept tested. Kerberos authentication mechanism uniqueness (tickets)

Reference. https://learn.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/kerberos-protocol

No community discussion yet for this question.