ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam SY0-501 All Questions

View all questions & answers for the SY0-501 exam
Go to Exam

Exam SY0-501 topic 1 question 592 discussion

Actual exam question from CompTIA's SY0-501
Question #: 592
Topic #: 1
[All SY0-501 Questions]

An organization has an account management policy that defines parameters around each type of account. The policy specifies different security attributes, such as longevity, usage auditing, password complexity, and identity proofing. The goal of the account management policy is to ensure the highest level of security while providing the greatest availability without compromising data integrity for users. Which of the following account types should the policy specify for service technicians from corporate partners?

  • A. Guest account
  • B. User account
  • C. Shared account
  • D. Privileged user account
  • E. Default account
  • F. Service account
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by Jenkins3mol at Oct. 8, 2019, 3:01 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Jenkins3mol
Highly Voted 5 years, 7 months ago
is this privileged French?
upvoted 14 times
...
AntonioTech
Most Recent 4 years, 1 month ago
Definitely "Privileged account" since the service technicians from corporate partners will need to do certain work.
upvoted 1 times
...
bubikaj
4 years, 2 months ago
I would say Regular or Privileged... Why? Firstly, Guest user doesn't have password and beside of that from Windows 10 there is no Guest user account. Service technician can be related to anything in company. Service technicians, also referred to as field service technicians, are responsible for providing different services, depending on their area of expertise, and diagnosing problems and making repairs. They will often go to their client's business or home to install something or make repairs. Service technicians may work on appliances, automobiles, computers and many other things. According to that, if they are related to the IT service technicians, I would go with privileged user as they need to troubleshoot, install, repair... If they are not in IT, than I would choose regular user account... So, from my pov it is 50%-50%... As I need to choose, I would assume that they are IT service techniciansand pick Privileged User account
upvoted 3 times
...
KJ44
4 years, 2 months ago
They need privilege and they are human technicians. They need the privileged account. A service account is for non-humans.
upvoted 2 times
...
nakres64
4 years, 3 months ago
D According to Darril: A privileged account has additional rights and privileges beyond what a regular user has. As an example, someone with administrator privileges on a Windows computer has full and complete control over the Windows computer.
upvoted 3 times
...
malvina
4 years, 3 months ago
D is correct: Privileged accounts • Elevated access to one or more systems • Administrator, Root • Complete access to the system • Often used to manage hardware, drivers, and software installation • This account should not be used for normal administration
upvoted 1 times
...
Miltduhilt
4 years, 4 months ago
Answer: B Explanation: The Guest account would not provide sufficient privileges for the technicians to function. A shared account would not provide accountability. A privileged user account would provide more capabilities than the technicians need. The default account should never be used. A service account should never be used for user logons.
upvoted 2 times
...
mcNik
4 years, 4 months ago
I would expect more 10 lines with bullshit before they ask something .. nice
upvoted 2 times
...
hlwo
4 years, 8 months ago
The answer is correct the question ask about this specific password policy for this company. key word "greatest availability" . User account may lockout and need someone to reactivate the account, So the only answer will provide this will be Privileged User Accounts . please think twice before putting a command .
upvoted 3 times
Hash___
4 years, 5 months ago
You can disable account lockout in pretty much all these answers.
upvoted 1 times
...
...
keinokinene
4 years, 8 months ago
F is the answer
upvoted 2 times
...
aymenfarah
4 years, 10 months ago
User account
upvoted 1 times
KerryB
4 years, 9 months ago
Does no one else feel like they are hinting at the Guest account? I agree that they should not have a Privileged user account, and with them using an unusual term like "longevity", I feel like they are hinting that an account could be created with a limited life span, just for them to accomplish what they need to work on. They are a technician working for a partner of our organization, so I don't think it can be a "User account".
upvoted 3 times
JosePulickal
4 years, 5 months ago
Even I feel service technicians should get the minimum 'Guest Account'. While dealing with vendor or corporate partner any changes recommended should be implemented by SA and not the technician. Technician should have minimum or no direct access to most systems - let alone highly sensitive one.
upvoted 2 times
...
...
...
Hot_156
4 years, 11 months ago
How we are going to apply this "The goal of the account management policy is to ensure the highest level of security while providing the greatest availability without compromising data integrity for users." If we give them Admin accounts (privilege)? Can someone explain that to me?
upvoted 2 times
EPSBAL
4 years, 11 months ago
The answer should be B. Partners/vendors users should use regular user accounts and NEVER every provided with any elevated rights unless they managed their own (vendor owned or vendor supported systems). In these cases, the use domain user account which should be added to a group which in turn nested in an appropriate local groups on a system. Service accounts belong to a system and not to a human, and should not ever by used by users. Local accounts on domain systems should not be allowed. The recommended method however is to a elevated account of a system admin (domain or system) shares desktop with a vendor and then either lets the vendor do his thing, or follow vendor's direction to do the work. As an aside, vendors/partners are the greatest threat to networks. They will use every trick in the book to not follow the rules, the typical excuse being "we always done things this way". Sorry for the long runt :-)
upvoted 2 times
Wilfred
4 years, 11 months ago
so why not D? we give them the normal user account you stated but Privileged. In this way, a mix of high security and high availability in between? without compromising data integrity for users??
upvoted 1 times
Hot_156
4 years, 11 months ago
easy piece! when you gave Admin account to someone, that person could have access to data that he shouldn't, so how would you grant this "without compromising data integrity for users". That is stated in the question!
upvoted 1 times
...
...
DrSledge
4 years, 11 months ago
IRL they honestly should not get accounts at all if you can avoid it. Let them work with the SAs to get the job done, but they don't get to touch the keyboard and manipulate the system. Yet another needlessly frustrating question.
upvoted 2 times
...
...
...
MelvinJohn
5 years, 3 months ago
Privileged User Accounts are named credentials that have been granted administrative privileges on one or more systems. This is typically one of the most common forms of privileged account access granted on an enterprise network, allowing users to have administrative rights on, for example, their local desktops or across the systems they manage. Do we want to give them admin privileges?
upvoted 1 times
MelvinJohn
5 years, 3 months ago
"For service technicians from corporate partners." Does not specify what they will service. So we don't know if they require admin privileges.
upvoted 2 times
Teza
4 years, 8 months ago
Whatever they are meant to service, one thing that is certain is that they need more permissions than the regular user, hence the need for a privileged account
upvoted 4 times
gobez
4 years, 3 months ago
Which part of the question states they need more permissions?
upvoted 1 times
ekinzaghi
3 years, 10 months ago
The repair they intend to do is dynamic meaning it could be anything. at this point only a privileged account can give u strategized target access in respect to any particular thing u intend to do. A guest account will limit the service tech incase what he has to do needs admin rights
upvoted 1 times
...
...
...
...
gobez
4 years, 3 months ago
"Which of the following account types should the policy specify for service technicians from corporate partners?" All the other is junk so the policy should specify Guest User.
upvoted 1 times
...
...
Elb
5 years, 4 months ago
https://www.cyberark.com/blog/7-types-privileged-accounts-know/
upvoted 2 times
Tzu
5 years, 1 month ago
Thanks for this ELB. Service Accounts can be privileged local or domain accounts that are used by an application or service to interact with the operating system. In some cases, these service accounts have domain administrative privileges depending on the requirements of the application they are being used for. Local service accounts can interact with a variety of Windows components, which makes coordinating password changes difficult.
upvoted 1 times
Teza
4 years, 9 months ago
How has the comments from both of you helped provide clarity to the answer provided for this question?
upvoted 24 times
...
ekinzaghi
3 years, 10 months ago
A service account is more or less a bot related account it cant be or isn't meant to be used by humans. in this case the question clearly states service technicians meaning humans are involved
upvoted 1 times
...
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel