Exam SY0-501 topic 1 question 276 discussion

never heard of transitive authentication. There is something called transitive trust which is used for single sign-on (i.e. - if A trusts B, and B trusts C, then A can trust C). I agree the answer should be dual-factor authentication (i.e. - "something you know" and "somewhere you are")

The answer is A. Dual factor authentication

I agree on biometric authentication.

the answer should be A. dual-factor authentication

I'd guess the answer is C the Technician has 2 objectives 1. properly authenticate users by their username and password only 2.Any attempt to authenticate from a location other than the office building should be rejected The question is asking what MUST be implemented, not a solution that covers both requirements. None of the answers cover BOTH requirements, but Single Factor satisfies the first requirement Dual Factor and Biometric don't meet the first requirement and Transitive Authentication doesn't apply to either requirement

The phrase transitive authentication means that the client authenticates once, and when he requests subsequent services the servers are aware of and believe in the prior authentication. Generally the initial authentication takes work; at the very least it requires typing a password, showing biometric data, or insertion of a possession key.

AAA and Authentication – CompTIA Security+ SY0-501 – 4.1 Minute 1:26 It's also true that Transitive auth is not exactly method of authentication, please note that, Transitive does not describe anyhow "Somewhere you are" by any means.

Dual factor...something you know and somewhere you are...check wikipedia multifactor auth if have any doubts

This GOTTA be a throwaway question. The question is literally an example of dual-factor authentication lol

Transitive trust authentication is a technique via which a user/entity that has already undergone authentication by one communication network to be able to access resources in another communication network without having to undergo authentication a second time

Maybe we're over thinking this. I manage a network of 50 people and want them to use a username & password to log in. (This is the standard single-factor authorization we all know and love.) So... I MUST implement Single Factor Authentication. The fact that any attempt to connect outside the office should be rejected is easily attained by simply disabling remote access (i.e., disable their VPN access). I do this weekly at my job. Biometric Authentication is obviously wrong. (That rules out 'D'.) I don't need Dual Factor Authentication. (That rules our 'A'.) Even though "Somewhere You Are" can be used as an authentication factor, I don't need it. I know where they are (in the office). I simply have to disallow their access from external networks, which is easily done by properly configuring their User Account. And Transitive Authentication seems to refer to allowing someone access to a network based on their previous access to the same or other trusted network. I don't want to allow access, I want to stop it. (That rules out 'B'.) So, as slap-in-the-face-obvious as it may be, I believe the answer should be 'C'. If you have arguments otherwise, I'm open to hearing them.

B is correct. A technician needs to implement a system which will properly authenticate users by their username and password ONLY. This is why it is not dual cos the question says ONLY, ONLY A username AND password should be needed. Transitive just means one thing allows another thing to be executed or trusted. Therefore only when at the OFFICE are you allowed to authenticate because location based services are in use so u can authenticate with ur user name and password ONLY

I give up

control + find "must" and not a single one of you clowns are discussing that in your wrong answer proposals use of the word "MUST" is dispositive here -- answer is B.

"Any attempt to authenticate from a location other than the office building should be rejected." I feel like this part is an important point in the question. I f you apply Dual factor, single factor, or biometric, it wouldn't apply. One of those crappy questions that is more process of elimination???

The answer is correct: "The phrase transitive authentication means that the client authenticates once, and when he requests subsequent services the servers are aware of and believe in the prior authentication. Generally the initial authentication takes work; at the very least it requires typing a password, showing biometric data, or insertion of a possession key. Users greatly resist authentication if it's frequent, and several services don't work at all unless the user can authenticate to them transitively" "I call this transitive authentication, because trust in the identity crosses over from the initial authentication to subsequent service activities. Other authors refer to it as single sign-on."

transitive has more to do with access and less to do with authentication. e.i transitive trust. this helps reduce resource use after a system has been granted access into a network resource once before. the answer is A from my understanding of the question.