A company wants to extend its help desk availability beyond business hours. The Chief Information Officer (CIO) decides to augment the help desk with a thirdparty service that will answer calls and provide Tier 1 problem resolution, such as password resets and remote assistance. The security administrator implements the following firewall change:
The administrator provides the appropriate path and credentials to the third-party company. Which of the following technologies is MOST likely being used to provide access to the third company?
A. LDAP
B. WAYF
C. OpenlD
D. RADIUS
E. SAML
How to PASS CAS-004 in First Attempt?FULL Printable PDF and Software. VALID exam to help you PASS. |
 |
The RADIUS server talks to other services using other protocols, such as LDAP or Simple Object Access Protocol (SOAP). This adds considerable functionality and security but can complicate setup.
Both LDAP and RADIUS are authentication protocols that enable users to access IT resources.
an LDAP server considers itself to be the final authority for authorization and authentication; a RADIUS server will split authentication and authorization. Authentication is who you are. Authorization is what you are allowed to do. Splitting them is important because increasingly you need two-factor authentication. You don’t have to split them, though. Supporting RADIUS also gets you LDAP.
A. LDAP
Someone took away the picture. Here’s what the picture looks like:
Permit TCP from 74.23.2.4 to 192.168.20.20 Port 80 (HTTP)
Permit TCP from 74.23.2.4 to 192.168.20.20 Port 636 (LDAP)
Permit TCP from 74.23.2.4 to 192.168.20.20 Port 5800 (remote multiple console access)
Permit TCP from 74.23.2.4 to 192.168.20.20 Port 1433 (SQL Server)
“…and remote assistance.” can throw people off to think port 5800 is needed. It would be beneficial if we have to choose 2 answers. However, in this case, unless Helpdesk can connect to the Service network via LDAP, the Helpdesk won’t be able to reset password or do any other kind of account maintenance. So the answer is still A. LDAP.
By just looking @ ports, you can miss the MAIN piece of the question, which states: “remote assistance help desk assistance & asks: “which is MOST likely being used to provide access to the third company”
Most likely to provide access means to provide REMOTE ACCESS & AUTHENTICATE which would be RADIUS.
but port of radius is not enabled
How can this be RADIUS? RADIUS uses ports 1812 and 1813. The only port that is Slightly correct with the Protocol is LDAP(s) – 636
Where do you see port numbers listed? Did someone change the question and answers on this? I only see the following as possible answers, which D. makes sense.
A. LDAP
B. WAYF
C. OpenlD
D. RADIUS
E. SAML
Here is the problem… 636 & 1433 would provide access to the RADIUS database. 80 would be the web and 5800 would be VNC. The questions is what provides access. Right in front of you :)~
“Port 636 is LDAPS which is secure LDAP (Only difference between the two is the encryption, you are still using the LDAP protocol.)”
True – Agreed. A
Port 80 is the Web service port.
Port 636 is LDAPS which is secure LDAP (Only difference between the two is the encryption, you are still using the LDAP protocol.)
1433 is SQL server. So not one of the answers.
Port 5800 is for VNC (Remote desktop) so not one of the answers
The only answer that makes any sense here is A. LDAP
https://www.tldp.org/HOWTO/archived/LDAP-Implementation-HOWTO/radius.html
could that be the solution.
Port 636 is ldaps…. so that’s what id go with. They dont list LDAPS though. Comptia exams.
Most logical answer appears to be A. LDAP / LDAPS
the ports permitted are 80, 636, 5800, 1433. none of the ports listed are for RADIUS.
Is this a trick question?