N10-009 CompTIA Exam Questions and Free Practice Test

Question 121

- (Topic 3)
A user wants to avoid using a password to access a third-party website. Which of the following does the user need in order to allow this type of access to the third-party website?

A. Multifactor

B. RADIUS

C. SSO

D. Local authentication

Correct Answer:C

Question 122

- (Topic 3)
Which of the following is the best action to take before sending a network router to be recycled as electronic waste?

A. Turn on port security.

B. Shred the switch hard drive.

C. Back up and erase the configuration.

D. Remove the company asset ID tag.

Correct Answer:C
Before disposing of a network router, it is important to back up and erase the configuration to prevent unauthorized access to sensitive data and network settings. A network router may contain information such as passwords, IP addresses, firewall rules, VPN settings, and other network parameters that could be exploited by hackers or malicious users. By backing up the configuration, you can preserve the network settings for future reference or reuse. By erasing the configuration, you can wipe out the data and restore the router to its factory default state.

Question 123

- (Topic 2)
A company requires a disaster recovery site to have equipment ready to go in the event of a disaster at its main datacenter. The company does not have the budget to mirror all the live data to the disaster recovery site. Which of the following concepts should the company select?

A. Cold site

B. Hot site

C. Warm site

D. Cloud site

Correct Answer:C
A warm site is a type of disaster recovery site that has equipment ready to go in the event of a disaster at the main datacenter, but does not have live data or applications. A warm site requires some time and effort to restore the data and services from backups, but it is less expensive than a hot site that has live data and applications. A cold site is a disaster recovery site that has no equipment or data, and requires a lot of time and money to set up after a disaster. A cloud site is a disaster recovery site that uses cloud computing resources to provide data and services, but it may have issues with bandwidth, latency, security, and cost. References: https://www.comptia.org/blog/what-is-a-warm-site

Question 124

- (Topic 3)
Which of the following can be used to centrally manage credentials for various types of administrative privileges on configured network devices?

A. SSO

B. TACACS+

C. Zero Trust

D. Separation of duties

E. Multifactor authentication

Correct Answer:B
TACACS+ is used to authenticate users and authorize access to network resources. This protocol provides greater network security by encrypting the authentication credentials and reducing the risk of unauthorized access. According to the CompTIA Network+ Study Manual, “TACACS+ is an authentication protocol used to centralize authentication and authorization for network devices. It is a more secure alternative to Telnet for handling logins and for granting privileges to users.”

Question 125

- (Topic 3)
An organization has experienced an increase in malicious spear-phishing campaigns and wants to mitigate the risk of hyperlinks from inbound emails.
Which of the following appliances would best enable this capability?

A. Email protection gateway

B. DNS server

C. Proxy server

D. Endpoint email client

E. Sandbox

Correct Answer:A
An email protection gateway is an appliance that can filter and block malicious emails and attachments before they reach the recipients. An email protection gateway can mitigate the risk of hyperlinks from inbound emails by scanning the links for malicious content, rewriting the links to point to a safe domain, or blocking the links altogether. An email protection gateway can also perform other functions such as spam filtering, antivirus scanning, encryption, and data loss prevention. A DNS server, a proxy server, an endpoint email client, and a sandbox are not appliances that can enable this capability, as they have different purposes and functions.
References
✑ 1: CompTIA Network+ N10-008 Certification Study Guide, page 304
✑ 2: CompTIA Network+ N10-008 Exam Subnetting Quiz, question 15
✑ 3: CompTIA Network+ N10-008 Certification Practice Test, question 5
✑ 4: Email Protection Gateway – N10-008 CompTIA Network+ : 3.2

Question 126

- (Topic 1)
A technician wants to deploy a new wireless network that comprises 30 WAPs installed throughout a three-story office building. All the APs will broadcast the same SSID for client access. Which of the following BEST describes this deployment?

A. Extended service set

B. Basic service set

C. Unified service set

D. Independent basic service set

Correct Answer:A
An extended service set (ESS) is a wireless network that consists of multiple access points (APs) that share the same SSID and are connected by a wired network. An ESS allows wireless clients to roam seamlessly between different APs without losing connectivity. A basic service set (BSS) is a wireless network that consists of a single AP and its associated clients. An independent basic service set (IBSS) is a wireless network that consists of a group of clients that communicate directly without an AP. A unified service set is not a standard term for a wireless network. References: https://partners.comptia.org/docs/default-source/resources/comptia-network-n10-008- exam-objectives-(2-0), https://en.wikipedia.org/wiki/Service_set_(802.11_network)

START N10-009 EXAM