



Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
A comprehensive overview of windows operating system security, focusing on key aspects such as powershell execution policies, active directory certificate services (ad cs), and microsoft patch processes. It covers essential security tools like group policy and microsoft security configuration wizard, along with network security measures, user account control (uac), and dynamic access control. The document also delves into vulnerability management, including hotfixes and security auditing, offering valuable insights for securing windows environments. Useful for students and professionals seeking to enhance their understanding of windows security best practices and configurations. It includes questions and answers about windows security.
Typology: Exams
1 / 5
This page cannot be seen from the preview
Don't miss anything!




Which value in the PowerShell "execution policy" allows loading of all configuration files and scripts? - Unrestricted
Which Active Directory Certificate Service (AD CS) server role allows routers and other network devices that do not have a domain account to obtain certificates? - B. Online Responder
D. Network Device Enrollment Service
Which key command in PowerShell shows an objects methods and properties? - All of the above
Which one of the following steps is not part of securing the Microsoft patch process? - Apply patches while on the road
Of the following methods which one is a tool that centrally manages and configures Windows operating systems and applications and user settings? - Group Policy
In which one of the Social Engineering stages would you establish credibility? - Relationship Development
Microsoft Security Configuration Wizard is a management tool that is based upon machine roles such as a file server a print server a domain controller etc. - True
Which option is best for a server to connect to a network? - Wired
Authenticode is a means of code signing that allows users to verify the source and author of the signed software. - False
Which type of permissions are created by default on non child objects or based by user assignment? - Explicit
Which one of the following could be categorized as a misconfiguration? - All of the above
Which one of the following is a Windows Firewall advantage? - B. Provides a very granular customization of applications
C. Can be configured with Netsh or PowerShell
What are the four service startup types? - Manual; Automatic; Automatic (Delayed); Disabled
Which method can start PowerShell in Windows 8? - Charm > Search > type PowerShell > click Windows PowerShell
The Windows Security Configuration Wizard can be used to configure the Windows Firewall with advanced security support. - True
Many current network security tools such as Firewalls and Intrusion Detection Systems and Intrusion Prevention Systems are not 100% compatible with IPv6. - True
Which one of the following creates and manages and exports (for deployment) security policies across multiple Windows operating systems roles and Microsoft applications? - Microsoft Security Compliance Manager
In a Hardening Process which method uses plaintext files containing software and driver installation configuration settings? - A. Security Templates
D. Group Policy
Security Templates provide a standardized way to organize and express and measure security related information. - False
An API is a set of functions that an application can call to allow the application to operate within Windows. - True
Which one of the following is a benefit of Dynamic Access Control? - All of the above
Which built-in Windows security feature prevents users from loading unauthorized and unapproved applications? - Windows AppLocker
Which Dynamic Access Control capability allows for "safety net" policies? - Centralize Access Policies
PowerShell is built on top of the .Net CRL and .Net Framework. - True
Which method scans systems to identify common security misconfigurations and missing security updates? - Microsoft Baseline Security Analyzer
In the Windows Registry what is a collection of discrete files called? - Hives
A logical Patch Management process is a one-time process that businesses should establish to ensure success. - False
Which Network Access Protection (NAP) client collects and maintains a system health status? - NAP Agent
Which solution is best to avoid downloading an untrusted patch? - All of the above
Which one of the following can be audited using the Windows Security Auditing feature? - All of the above
Which one of the following can be managed through group policies (GPO)? - All of the above
Which one of the following DLL file handles the memory management? - Kernel32.dll
Which one of the following is required for Windows BitLocker configuration? - Trusted Platform Module (TPM)
Which type of attacker has actions that are considered noble by the attacker but could cause more harm than good? - Gray Hat
In a PowerShell environment the WhatIf parameter allows PowerShell users to test the command before actually executing. - True
Which one of the following is a cmdlet that is used to gather computer information? - Get-WmiObject
Which execution mode has unrestricted access to the underlying hardware? - Kernel
Windows Defender was formerly known as Microsoft Anti-Spyware. - True