CCST Endpoint Operating System Security 2

Question 1

What is the principle of least privilege in endpoint security?

Accepted Answer

Users should be granted only the minimum permissions needed for their job

Answer

Least privilege means users and processes only get the minimum access needed, reducing damage from compromised accounts.

Question 2

Which Windows feature controls whether applications can make changes to the operating system?

Accepted Answer

User Account Control (UAC)

Answer

UAC prompts for confirmation before allowing applications to make changes requiring elevated privileges.

Question 3

What type of software monitors endpoint activity and detects threats in real time?

Accepted Answer

Endpoint Detection and Response (EDR)

Answer

EDR solutions continuously monitor endpoints, detect suspicious behavior, and provide automated response capabilities.

Question 4

Why is full disk encryption important for endpoint security?

Accepted Answer

It protects data if the device is lost or stolen by making it unreadable without the decryption key

Answer

Full disk encryption ensures all data is unreadable without proper authentication if the device is lost or stolen.

Question 5

What is the purpose of application whitelisting on endpoints?

Accepted Answer

To allow only pre-approved applications to execute

Answer

Application whitelisting permits only approved applications to run, blocking all unauthorized software including unknown malware.

(CCST) Cisco Certified Support Technician Practice Test