Which practice involves reviewing user accounts for dormant status, excessive privileges, default credentials, orphaned accounts, non-expiring passwords, shared accounts, and irregular login times?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $25.99Unlock all

Prepare for the Security Operations Exam with targeted practice questions. Enhance your understanding with detailed explanations and tips to successfully pass your exam!

Multiple Choice

Which practice involves reviewing user accounts for dormant status, excessive privileges, default credentials, orphaned accounts, non-expiring passwords, shared accounts, and irregular login times?

Explanation:
Auditing of system accounts focuses on examining existing user accounts and their attributes to uncover security gaps and ensure policy compliance. By reviewing for dormant status, you catch accounts that are no longer needed but still have access, reducing the attack surface. Checking for excessive privileges helps prevent privilege creep where users accumulate more access than necessary. Flagging default credentials and non-expiring passwords strengthens authentication, while identifying orphaned or shared accounts improves accountability and reduces gaps in ownership. Noting irregular login times can reveal suspicious or inappropriate activity. Together, these checks keep account hygiene aligned with actual use and policy. This practice differs from access control, which defines who can access what and under what conditions, and from identity management, which handles the lifecycle of identities and credentials. It also differs from user provisioning, which is about creating and deactivating accounts as people join or leave. Auditing of system accounts is the ongoing verification that enforcement and lifecycle processes are working properly, by reviewing the accounts themselves and their behavior.

Auditing of system accounts focuses on examining existing user accounts and their attributes to uncover security gaps and ensure policy compliance. By reviewing for dormant status, you catch accounts that are no longer needed but still have access, reducing the attack surface. Checking for excessive privileges helps prevent privilege creep where users accumulate more access than necessary. Flagging default credentials and non-expiring passwords strengthens authentication, while identifying orphaned or shared accounts improves accountability and reduces gaps in ownership. Noting irregular login times can reveal suspicious or inappropriate activity. Together, these checks keep account hygiene aligned with actual use and policy.

This practice differs from access control, which defines who can access what and under what conditions, and from identity management, which handles the lifecycle of identities and credentials. It also differs from user provisioning, which is about creating and deactivating accounts as people join or leave. Auditing of system accounts is the ongoing verification that enforcement and lifecycle processes are working properly, by reviewing the accounts themselves and their behavior.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy