Free Access CompTIA.CAS-004.v2022-04-29.q42 Practice Test (Page 5)

Question 16

A company that uses AD is migrating services from LDAP to secure LDAP. During the pilot phase, services are not connecting properly to secure LDAP. Block is an except of output from the troubleshooting session:

Which of the following BEST explains why secure LDAP is not working? (Select TWO.)

A.Secure LDAP should be running on UDP rather than TCP.

B.The clients may not trust idapt by default.

C.Danvills.com is under a DDoS-inator attack and cannot respond to OCSP requests.

D.The company is using the wrong port. It should be using port 389 for secure LDAP.

E.The secure LDAP service is not started, so no connections can be made.

F.Secure LDAP does not support wildcard certificates.

G.The clients may not trust Chicago by default.

Question 17

A new web server must comply with new secure-by-design principles and PCI DSS. This includes mitigating the risk of an on-path attack. A security analyst is reviewing the following web server configuration:

Which of the following ciphers should the security analyst remove to support the business requirements?

A.TLS_AES_128_GCM_SHA256

B.TLS_AES_128_CCM_8_SHA256

C.TLS_DHE_DSS_WITH_RC4_128_SHA

D.TLS_CHACHA20_POLY1305_SHA256

Question 18

An e-commerce company is running a web server on premises, and the resource utilization is usually less than 30%. During the last two holiday seasons, the server experienced performance issues because of too many connections, and several customers were not able to finalize purchase orders. The company is looking to change the server configuration to avoid this kind of performance issue.
Which of the following is the MOST cost-effective solution?

A.Upgrade the server with a new one.

B.Buy a new server and create an active-active cluster.

C.Change the operating system.

D.Move the server to a cloud provider.

Question 19

An organization is implementing a new identity and access management architecture with the following objectives:
Supporting MFA against on-premises infrastructure
Improving the user experience by integrating with SaaS applications
Applying risk-based policies based on location
Performing just-in-time provisioning
Which of the following authentication protocols should the organization implement to support these requirements?

A.SAML and RADIUS

B.Kerberos and TACACS

C.OTP and 802.1X

D.OAuth and OpenID

Question 20

A developer implement the following code snippet.

Which of the following vulnerabilities does the code snippet resolve?

A.Information leakage

B.SQL inject

C.Missing session limit

D.Buffer overflow

Premium Bundle

Newest CAS-004 Exam PDF Dumps shared by BraindumpsPass.com for Helping Passing CAS-004 Exam! BraindumpsPass.com now offer the updated CAS-004 exam dumps, the BraindumpsPass.com CAS-004 exam questions have been updated and answers have been corrected get the latest BraindumpsPass.com CAS-004 pdf dumps with Exam Engine here:

Access CAS-004 Premium Version

(620 Q&As Dumps, 40%OFF Special Discount: Exam-Tests)

Other Version: 1097CompTIA.CAS-004.v2025-06-21.q202; 1236CompTIA.CAS-004.v2023-08-04.q126; 1381CompTIA.CAS-004.v2023-03-06.q93; 1208CompTIA.CAS-004.v2023-02-23.q88; 1005CompTIA.CAS-004.v2023-02-07.q68; 1875CompTIA.CAS-004.v2022-11-07.q113; 2438CompTIA.CAS-004.v2022-06-25.q79

Latest Upload: 105OCEG.GRCP.v2025-09-11.q211; 104HP.HPE0-V27.v2025-09-11.q78; 118Oracle.1Z0-1057-23.v2025-09-10.q47; 150Google.Professional-Cloud-Network-Engineer.v2025-09-09.q179; 131SAP.C-S4EWM-2023.v2025-09-08.q83; 164TheSecOpsGroup.CNSP.v2025-09-08.q20; 223CFAInstitute.ESG-Investing.v2025-09-08.q173; 158PECB.ISO-IEC-27001-Lead-Implementer.v2025-09-06.q132; 148Salesforce.Data-Architect.v2025-09-05.q216; 143Adobe.AD0-E605.v2025-09-05.q50