Exam 200-301 topic 1 question 681 discussion

my distain for cisco grows

Single sign-on allows users to access multiple applications, websites, resources with one set of login credentials. It is not a part of a MFA, it actually needs MFA to be secured. A soft (or hard) token can be a part of a MFA A password that expires can be a part of a MFA

The question wording is incorrect: B and D are "part", not "examples" of a M.A. !!! Anyway... :-(

B & E are correct

Multifactor authentication requires different factors or categories of credentials. Knowledge factors include unique user knowledge (like the name of your pet) and passwords possession factors include keys, security tokens (soft and hard tokens), and authorized smartphone apps. To apply a 2-factor authentication we need 2 methods from different categories. In our case, B & E belong to 2 different categories. https://www.youtube.com/watch?v=_3rlQVXGKZc&t=67s

a password is a form of unique user knowledge, and it's a separate method of authentication than a token, so Cisco would have to accept either as a correct solution, as long as the other solution chosen is token.

B,E is the correct answer Something you know Something you have something you are

this question doesn't test candidate knowledge- it simply tricks you- whoever wrote is question is out of it

Chat GPT: Multifactor authentication (MFA) involves using multiple methods to verify a user's identity. Among the options you've listed, the two examples of MFA are: B. Soft tokens - Soft tokens typically involve using a mobile app or software application on a device to generate time-based codes or one-time passwords, adding an extra layer of authentication beyond just a password. E. Unique user knowledge - This usually refers to knowledge-based authentication, where a user needs to provide information that only they would know, such as answering security questions or providing personal information in addition to their password.

Answer: B and E https://www.cisco.com/c/en/us/products/security/what-is-multi-factor-authentication.html#~methods <MFA methods> 1. Knowledge Knowledge--usually a password--is the most commonly used tool in MFA solutions. However, despite their simplicity, passwords have become a security problem and slow down productivity. The security question--another knowledge method in wide use but falling out of favor--requires the user to store the answer to a personal question in their profile and then enter it during login. This process is seen as onerous by many users because of the need for repeated data entry and storing and managing their answers.

password and unique user knowledge are both something you know, so i don't think that works. BC include something you know and something you have.

The correct answers are (E) unique user knowledge and (B) soft tokens. Explanation: Single sign-on (SSO) is not an example of multifactor authentication. SSO allows users to access multiple applications with a single set of credentials. Passwords that expire are a security policy that enforces regular password changes, but this is not an example of multifactor authentication on its own. Soft tokens are a form of multifactor authentication. They are typically software-based applications that generate one-time passwords or time-based codes for users to use along with their regular passwords. Shared password responsibility is not an example of multifactor authentication. It refers to the practice of distributing account credentials among multiple people, which is generally not recommended for security reasons.

Multifactor authentication (MFA) is a security mechanism that requires users to provide two or more different forms of identification before gaining access to a system or service. These factors typically fall into three categories: something you know (like a password), something you have (like a smartphone), and something you are (like a fingerprint).

B & E Types of Authentication Factors MFA generally refers to five types of authentication factors which are expressed as: Knowledge: Something the user knows, like username, password, or a PIN. Possession: Something the user has, like a safety token. Heritage: Something the user is, which can be demonstrated with fingerprint, retina verification, or voice recognition. Place: Based on the user's physical position. Time: A time-based window of opportunity to authenticate like OTP.

Answer is BE

ccna 200-301 is just the beginning of this network industry. why do they do this? the question is ok but the choices...... :((

From someone who's taken and passed the Sec+ exam, its def BE.