SSCP Certification SSCP Identity and Access Management

Question 1

Which identity management concept ensures that a user's access rights are limited to only what is necessary for their job function?

Accepted Answer

Least privilege

Answer

Separation of duties

Answer

Need to know

Answer

Role explosion

Question 2

What type of access control model grants permissions based on organizational roles rather than individual user identities?

Accepted Answer

RBAC

Answer

DAC

Answer

MAC

Answer

ABAC

Question 3

In the context of SSCP, what is the primary purpose of a directory service such as LDAP?

Accepted Answer

Centralize identity and resource management

Answer

Encrypt user credentials

Answer

Monitor network traffic

Answer

Perform vulnerability scans

Question 4

Which authentication factor category does a hardware token that generates a one-time password belong to?

Accepted Answer

Something you have

Answer

Something you know

Answer

Something you are

Answer

Somewhere you are

Question 5

What is 'provisioning' in the context of identity and access management?

Accepted Answer

Creating and granting access rights to new user accounts

Answer

Removing user accounts when employees leave

Answer

Auditing existing user permissions

Answer

Resetting forgotten passwords

Question 6

Which SSCP domain concept involves reviewing and confirming that user access rights remain appropriate over time?

Accepted Answer

Access recertification

Answer

Privilege escalation

Answer

Account lockout

Answer

Single sign-on