CompTIA Security+ · SY0-701

Objective 4.6: Given a scenario, implement and maintain identity and access management

Practice questions for Security+ objective 4.6, Given a scenario, implement and maintain identity and access management.” Every question is original, written to the SY0-701 exam objectives, and comes with a full explanation — answer them below to see instant grading.

This objective sits in Domain 4.0: Security Operations, which is about 28% of the exam — so mastering it moves your readiness score meaningfully.

1.An organization implements a system in which employees attempting to access the corporate VPN are evaluated against the following conditions before access is granted: their device must have a current antivirus signature file, the operating system must not have critical patches outstanding for more than 72 hours, and the connection must originate from a recognized country. Employees whose devices fail any condition are redirected to a remediation portal rather than granted VPN access. Which access control concept does this system implement?

2.A company uses OpenID Connect (OIDC) to allow users to log in to its application using their Google account. Which IAM function does OIDC provide in this scenario?

3.A healthcare portal requires users to authenticate with a username/password and then verify their identity using a fingerprint scanner. Which MFA factor type does the fingerprint represent?

4.An employee moves from the finance department to the marketing department. Their old finance application access is not removed. Six months later, they still have access to payroll data. Which IAM failure does this represent?

5.A company uses OAuth 2.0 to allow a third-party application to access a user's data on another service without the user sharing their password with the third party. Which IAM framework is described?

Practice every objective, adaptively

CertBench tracks your score on 4.6 and every other objective, then builds a daily plan that targets your weakest spots. Start with the free diagnostic.

Take the free diagnostic

More objectives in Domain 4.0

← All Security+ practice questions