Free Access CompTIA.CAS-003.v2022-05-05.q206 Practice Test (Page 18)

Question 81

An enterprise is trying to secure a specific web-based application by forcing the use of multifactor authentication. Currently, the enterprise cannot change the application's sign-in page to include an extra field. However, the web-based application supports SAML. Which of the following would BEST secure the application?

A.Deploying Shibboleth to all web-based applications in the enterprise

B.Forcing higher-complexity passwords and frequent changes

C.Using an SSO application that supports mutlifactor authentication

D.Enabling the web application to support LDAP integration

Question 82

Given the following output from a local PC:

Which of the following ACLs on a stateful host-based firewall would allow the PC to serve an intranet website?

A.Allow 172.30.0.28:80 -> ANY

B.Allow 172.30.0.28:80 -> 172.30.0.0/16

C.Allow 172.30.0.28:80 -> 172.30.0.28:53

D.Allow 172.30.0.28:80 -> 172.30.0.28:443

Question 83

A company is developing requirements for a customized OS build that will be used in an embedded environment. The company procured hardware that is capable of reducing the likelihood of successful buffer overruns while executables are processing. Which of the following capabilities must be included for the OS to take advantage of this critical hardware-based countermeasure?

A.TrustZone

B.SCP

C.ASLR

D.Application whitelisting

E.NX/XN bit

Question 84

A security analyst is reviewing the following company requirements prior to selecting the appropriate technical control configuration and parameter:
RTO:2 days
RPO:36 hours
MTTR:24 hours
MTBF:60 days
Which of the following solutions will address the RPO requirements?

A.Backup solution that implements daily snapshots

B.Remote Syslog facility collecting real-time events

C.Cloud environment distributed across geographic regions

D.Server farm behind a load balancer delivering five-nines uptime

Question 85

A security analyst is attempting to break into a client's secure network. The analyst was not given prior information about the client, except for a block of public IP addresses that are currently in use. After network enumeration, the analyst's NEXT step is to perform:

A.a risk analysis

B.an external security audit

C.a vulnerability assessment

D.a red team exercise

E.a gray-box penetration test

Premium Bundle

Newest CAS-003 Exam PDF Dumps shared by BraindumpsPass.com for Helping Passing CAS-003 Exam! BraindumpsPass.com now offer the updated CAS-003 exam dumps, the BraindumpsPass.com CAS-003 exam questions have been updated and answers have been corrected get the latest BraindumpsPass.com CAS-003 pdf dumps with Exam Engine here:

Access CAS-003 Premium Version

(683 Q&As Dumps, 40%OFF Special Discount: Exam-Tests)

Other Version: 7472CompTIA.CAS-003.v2022-09-22.q535; 6501CompTIA.CAS-003.v2022-08-15.q472; 2985CompTIA.CAS-003.v2022-04-30.q141; 84CompTIA.Actualtestpdf.CAS-003.v2022-01-19.by.morgan.327q.pdf

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 165TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 150Salesforce.Data-Architect.v2025-09-05.q216; 144Adobe.AD0-E605.v2025-09-05.q50