User management and access control MCQs

User authentication is the process of identifying and verifying the identity of users to ensure that only authorized individuals can access the system.

Role-Based Access Control (RBAC) is based on assigning users to roles, and permissions are associated with these roles, simplifying access management.

The Least Privilege Principle aims to minimize user privileges to the minimum necessary for tasks, reducing the potential impact of security incidents.

The chown command in Unix-based systems is used to change the ownership of files and directories.

The su command in Unix-based systems is used for switching users, allowing the user to become another user.

Mandatory Access Control (MAC) is based on security labels assigned to subjects (users) and objects (resources).

The passwd command in Unix-based systems is used for setting user passwords.

Discretionary Access Control (DAC) allows the object's owner to determine who has access to the object and what permissions they have.

The net user command in Windows is used for displaying user information, including account status and group memberships.

The 'Administrators' group in Windows is commonly used to grant users administrative privileges on a local machine.

The Access Control List (ACL) is used for defining permissions for resources, specifying which users or system processes are granted access.

The chmod command in Unix-based systems is used to grant or revoke permissions on files and directories.

The whoami command in Windows is used for displaying the current username associated with the current session.

The 'Domain Users' group in Windows is used for managing user rights and permissions across multiple machines in a domain.

The chmod command in Unix-based systems is used for granting or revoking permissions on files and directories.

Mandatory Access Control (MAC) is often used in military and government environments, where access is based on security clearances.

The dsadd command in Windows Server is used for adding users to Active Directory.

Rule-Based Access Control (RuBAC) is based on predefined rules and policies that determine access permissions.

The who command in Unix-based systems is used for listing currently logged-in users.

The 'Power Users' group in Windows is used to grant users specific rights and permissions on a local machine.

The su command in Windows PowerShell is used for switching users, similar to its use in Unix-based systems.

The icacls command in Windows is used to grant or revoke permissions on files and directories.

The id command in Unix-based systems is used for displaying user information, including user and group IDs.

The 'Remote Desktop Users' group in Windows is used to grant users the right to log on locally to a machine.

The runas command in Windows is used for running a program with different user credentials.

Rule-Based Access Control (RuBAC) is based on defining access rules for specific objects in the system.

The icacls command in Windows is used for granting or revoking permissions on files and directories.

The groups command in Unix-based systems is used to display the groups to which a user belongs.

The net localgroup command in Windows is used for adding users to a local group.

Discretionary Access Control (DAC) is based on defining access permissions for specific users and groups.

The 'lusrmgr.msc' console in Windows is used for managing local user accounts and groups.

The useradd command in Unix-based systems is used to add a new user to the system.

The net group command in Windows is used for displaying group information, including members.

Discretionary Access Control (DAC) allows users to share resources with specific individuals or groups based on their discretion.

The net use command in Windows is used for mapping network drives and managing network connections.

The 'Network Users' group in Windows is used to grant users the right to access a shared resource over the network.

The usermod command in Unix-based systems is used for modifying user account properties.

Mandatory Access Control (MAC) is commonly associated with military classifications such as Top Secret and Secret.

The dsacls command in Windows Server is used for modifying directory service access control lists.

The userdel command in Unix-based systems is used to remove a user from the system.

The cacls command in Windows is used for modifying directory access control lists.

The finger command in Unix-based systems is used to display detailed information about a user, including login time and home directory.

The net localgroup command in Windows is used for modifying local group memberships.

Rule-Based Access Control (RuBAC) is based on defining access rules using policies and decision logic.

The chmod command in Windows PowerShell is used for granting or revoking permissions on files and directories.

The 'Remote Desktop Users' group in Windows is used to grant users the right to log on remotely to a machine.

The dsmod command in Windows Server is used for modifying Active Directory objects.

The chsh command in Unix-based systems is used to change a user's login shell.

The dsget command in Windows Server is used for retrieving properties of Active Directory objects.

Discretionary Access Control (DAC) is often associated with hierarchical structures where users at higher levels have broader access.