CompTIA CompTIA Certifications SK0-005 Questions & Answers

• Question 41:

  A human resources analyst is attempting to email the records for new employees to an outside payroll company. Each time the analyst sends an email containing employee records, the email is rejected with an error message. Other emails outside the company are sent correctly. Which of the following is most likely generating the error?

  A. DHCP configuration

  B. Firewall rules

  C. DLP software

  D. Intrusion detection system

  Correct Answer: C

• Question 42:

  A data center employee shows a driver's license to enter the facility Once the employee enters, the door immediately doses and locks, triggering a scale that then weighs the employee before granting access to another locked door. This is an example of.

  A. mantrap.

  B. a bollard

  C. geofencing

  D. RFID.

  Correct Answer: A

  A mantrap is a security device that consists of a small space with two sets of interlocking doors, such that the first set of doors must close before the second one opens. A mantrap can be used to control access to a data center by verifying the identity and weight of the person entering. A bollard is a sturdy post that prevents vehicles from entering a restricted area. Geofencing is a technology that uses GPS or RFID to create a virtual boundary around a location and trigger an action when a device crosses it. RFID is a technology that uses radio waves to identify and track objects or people.

  References: https://www.techopedia.com/definition/16293/mantrap https://www.techopedia.com/definition/1437/bollard https://www.techopedia.com/definition/23961/geofencing https://www.techopedia.com/definition/506/radio-frequency-identification-rfid

• Question 43:

  The HIDS logs on a server indicate a significant number of unauthorized access attempts via USB devices at startup. Which of the following steps should a server administrator take to BEST secure the server without limiting functionality?

  A. Set a BIOS/UEFI password on the server.

  B. Change the boot order on the server and restrict console access.

  C. Configure the host OS to deny login attempts via USB.

  D. Disable all the USB ports on the server.

  Correct Answer: B

  Changing the boot order on the server and restricting console access would prevent unauthorized access attempts via USB devices at startup, as the server would not boot from any external media and only authorized users could access the console. Setting a BIOS/UEFI password on the server would also help, but it could be bypassed by resetting the CMOS battery or using a backdoor password. Configuring the host OS to deny login attempts via USB would not prevent booting from a malicious USB device that could compromise the system before the OS loads. Disabling all the USB ports on the server would limit functionality, as some peripherals or devices may need to use them.

  References: https://www.pcmag.com/how-to/dont-plug-it-in-how-to-prevent-a-usb-attack https://www.techopedia.com/definition/10362/boot-order https://www.techopedia.com/definition/10361/console-access https://www.techopedia.com/definition/102/bios-password https://www.techopedia.com/definition/10363/cmos-battery

• Question 44:

  A server administrator wants to check the open ports on a server.

  Which of the following commands should the administrator use to complete the task?

  A. nslookup

  B. nbtstat

  C. telnet

  D. netstat -a

  Correct Answer: D

  netstat is a command-line tool that displays network connections, routing tables, interface statistics, and more. The -a option shows all listening and non-listening sockets on the server. This can help check the open ports on a server and identify any unwanted or malicious connections.

  References: https://docs.microsoft.com/en-us/windows-server/administration/windows-commands/netstat

• Question 45:

  A server administrator receives the following output when trying to ping a local host:

  

  Which of the following is MOST likely the issue?

  A. Firewall

  B. DHCP

  C. DNS

  D. VLAN

  Correct Answer: A

  A firewall is a network device or software that filters and controls the incoming and outgoing traffic based on predefined rules. A firewall can block or allow certain types of packets, ports, protocols, or IP addresses. The output of the ping command shows that the local host is unreachable, which means that there is no network connectivity between the source and the destination. This could be caused by a firewall that is blocking the ICMP (Internet Control Message Protocol) packets that ping uses to test the connectivity.

  References: https://www.comptia.org/training/resources/exam-objectives/comptia-server-sk0-005-exam-objectives (Objective 2.2)

• Question 46:

  An application needs 10GB of RAID 1 for log files, 20GB of RAID 5 for data files, and 20GB of RAID 5 for the operating system. All disks will be 10GB in capacity. Which of the following is the MINIMUM number of disks needed for this application?

  A. 6

  B. 7

  C. 8

  D. 9

  Correct Answer: C

  To calculate the minimum number of disks needed for this application, we need to consider the RAID levels and their disk requirements. RAID 1 requires a minimum of two disks and provides mirroring, which means that data is duplicated on both disks. RAID 5 requires a minimum of three disks and provides striping with parity, which means that data is distributed across all disks with one disk storing parity information for error correction. RAID 5 can tolerate one disk failure without losing data. To create a 10GB RAID 1 array for log files, we need two 10GB disks. To create a 20GB RAID 5 array for data files, we need four 10GB disks (three for data and one for parity). To create a 20GB RAID 5 array for the operating system, we need another four 10GB disks (three for data and one for parity). Therefore, the total number of disks needed is 2 + 4 + 4 = 10. However, since we can use different RAID levels for different partitions on the same disk, we can optimize the disk usage by using only eight disks as follows: Disk 1: 10GB RAID 1 (log files) + 10GB RAID 5 (data files) Disk 2: 10GB RAID 1 (log files) + 10GB RAID 5 (data files) Disk 3: 10GB RAID 5 (data files) + 10GB RAID 5 (OS) Disk 4: 10GB RAID 5 (data files) + 10GB RAID 5 (OS) Disk 5: 10GB RAID 5 (parity for data files) + 10GB RAID 5 (OS) Disk 6: 10GB RAID 5 (OS) + unused space Disk 7: 10GB RAID 5 (parity for OS) + unused space Disk 8: unused space

  References: https://en.wikipedia.org/wiki/Standard_RAID_levels

• Question 47:

  Which of the following testing exercises for disaster recovery is primarily used to discuss incident response strategies for critical systems without affecting production data?

  A. Tabletcp

  B. Backup recovery test

  C. Lrverail over

  D. Hot-site visit audit

  Correct Answer: A

  A tabletop exercise is a type of disaster recovery testing exercise that is primarily used to discuss incident response strategies for critical systems without affecting production data. A tabletop exercise is a discussion-based session where team members meet in an informal, classroom setting to review their roles and responsibilities during an emergency and their responses to a hypothetical scenario. A facilitator guides the participants through the discussion and evaluates the strengths and weaknesses of the preparedness program. A tabletop exercise does not involve any actual deployment of resources or activation of systems12. A backup recovery test (B) is a type of disaster recovery testing exercise that involves restoring data from backup media to verify its integrity and availability. A backup recovery test may affect production data if it is not performed on a separate environment. A live failover ?is a type of disaster recovery testing exercise that involves switching operations from a primary site to a secondary site in case of a failure or disruption. A live failover may affect production data if it is not performed on a simulated environment. A hot-site visit audit (D) is a type of disaster recovery testing exercise that involves inspecting and evaluating a hot site, which is a backup location that has fully operational equipment and resources to resume business operations in case of a disaster. A hot-site visit audit does not involve any discussion of incident response strategies or simulation of scenarios.

  References: https://www.ready.gov/testing-exercises https://www.ready.gov/exercises

• Question 48:

  A new application server has been configured in the cloud to provide access to all clients within the network. On-site users are able to access all resources, but remote users are reporting issues connecting to the new application. The server administrator verifies that all users are configured with the appropriate group memberships. Which of the following is MOST likely causing the issue?

  A. Telnet connections are disabled on the server.

  B. Role-based access control is misconfigured.

  C. There are misconfigured firewall rules.

  D. Group policies have not been applied.

  Correct Answer: C

  This is the most likely cause of the issue because firewall rules can block or allow traffic based on source, destination, port, protocol, or other criteria. If the firewall rules are not configured properly, they can prevent remote users from accessing the cloud application server, while allowing on-site users to access it.

  References: https://docs.microsoft.com/en-us/azure/virtual-network/security-overview

• Question 49:

  A technician is troubleshooting a server issue. The technician has determined several possible causes of the issue and has identified various solutions. Which of the following should the technician do NEXT?

  A. Consult internet forums to determine which is the most common cause and deploy only that solution.

  B. Test each solution individually to determine the root cause, rolling back the changes in between each test.

  C. Implement the shortest solution first to identify the issue and minimize downtime.

  D. Test each solution in succession and restore the server from the latest snapshot.

  Correct Answer: B

• Question 50:

  A data center technician is assigned the daily task of walking through the data center to perform a health check on all the systems. Which of the following issues can the technician detect without logging on to any of the systems? (Choose two.)

  A. VLAN mismatch

  B. UPS battery fault

  C. Overheating

  D. Memory exhaustion

  E. IP conflict

  F. OS failure

  Correct Answer: BC