CNIT 242 PRACTICE EXAM PAPER 2026
QUESTIONS WITH ANSWERS GRADED A+
◉ What can you use to accomplish authentication? Answer: What you
know, what you have, what you are, where you are
◉ What are the two basic parts of authentication? Answer: Who you are,
and proof that you are who you say you are (ID & Proof of ID)
◉ Examples of Identification. Answer: User ID, physical object (ATM
card), biometrics, digital certificates
◉ Examples of Proof of Identification. Answer: Password, access code,
one-time token, biometrics, digital certificates
◉ T/F: It is good practice for user ID to be the same as email address.
Answer: False
◉ Rules of passwords. Answer: 1. Don't write them down!
Avoid easy to guess passwords, do not let them contain account name or
display name, force periodic password changes between 30 days-1 year,
, disallow last x passwords, use non-alpha characters, disallow plain
English passwords.
◉ protocols to enable communication for authentication. Answer:
Domain logon, RADIAS (Remote Authentication Dial In User Service),
TACACS+ (Terminal Access Controller Access Control System)
◉ Define authorization. Answer: Users should only be allowed to access
resources that they are supposed to be able to access.
◉ T/F: it is best to assign rights and permissions to groups rather than to
individual users. Answer: True
◉ What is an ACL? Answer: Access control list, simplest method of
providing authorization. Contain a list of authorized users and their
authorization level, are attached to individual resources. Used in
Windows.
◉ T/F: Kerberos, by default, uses public-key cryptography. Answer:
False. Kerberos can be configured to use public-key cryptography, but is
typically reliant on symmetric key cryptography.
◉ In Kerberos, what is a KDC? Answer: Key Distribution Center: stores
all of the secret keys for user machines and services in its database.
QUESTIONS WITH ANSWERS GRADED A+
◉ What can you use to accomplish authentication? Answer: What you
know, what you have, what you are, where you are
◉ What are the two basic parts of authentication? Answer: Who you are,
and proof that you are who you say you are (ID & Proof of ID)
◉ Examples of Identification. Answer: User ID, physical object (ATM
card), biometrics, digital certificates
◉ Examples of Proof of Identification. Answer: Password, access code,
one-time token, biometrics, digital certificates
◉ T/F: It is good practice for user ID to be the same as email address.
Answer: False
◉ Rules of passwords. Answer: 1. Don't write them down!
Avoid easy to guess passwords, do not let them contain account name or
display name, force periodic password changes between 30 days-1 year,
, disallow last x passwords, use non-alpha characters, disallow plain
English passwords.
◉ protocols to enable communication for authentication. Answer:
Domain logon, RADIAS (Remote Authentication Dial In User Service),
TACACS+ (Terminal Access Controller Access Control System)
◉ Define authorization. Answer: Users should only be allowed to access
resources that they are supposed to be able to access.
◉ T/F: it is best to assign rights and permissions to groups rather than to
individual users. Answer: True
◉ What is an ACL? Answer: Access control list, simplest method of
providing authorization. Contain a list of authorized users and their
authorization level, are attached to individual resources. Used in
Windows.
◉ T/F: Kerberos, by default, uses public-key cryptography. Answer:
False. Kerberos can be configured to use public-key cryptography, but is
typically reliant on symmetric key cryptography.
◉ In Kerberos, what is a KDC? Answer: Key Distribution Center: stores
all of the secret keys for user machines and services in its database.
