CompTIA Updated SK0-005 Exam Questions and Answers by alanna

Overprovisioningrefers to allocating more resources (e.g., CPU, memory) to virtual machines on a hypervisor than the physical host actually has available. This is done because not all virtual machines are likely to use their maximum resources simultaneously. Overprovisioning helps optimize resource utilization on a hypervisor but must be managed carefully to avoid performance degradation.

Overprovisioning (Answer B):It allows for more efficient use of resources, but overcommitting too much can lead to performance issues.

Direct access (Option A):Refers to direct hardware access, which is unrelated to resource allocation.

Link aggregation (Option C):Refers to combining multiple network connections, unrelated to hypervisor resources.

Component redundancy (Option D):Refers to using backup components for fault tolerance, not related to overprovisioning.

Scalability (Option E):Refers to the ability to increase or decrease resources as needed but doesn't describe overcommitting resources.

CompTIA Server+ Reference:This topic is covered underSK0-005 Objective 1.3: Explain virtualization concepts and benefits.

Driver updates should be applied to the new components that have been added to a mission-critical server, as part of the server hardening requirements. Drivers are software programs that enable the communication and functionality of hardware devices, such as network cards, storage controllers, or graphics cards. Updating drivers can improve the performance, compatibility, and stability of the new components with the server operating system and applications. References: CompTIA Server+ Certification Exam Objectives, Domain 2.0: Hardware, Objective 2.2: Given a scenario, install, configure and maintain server components.

Scope-based authentication is a method of restricting access to resources based on the location, network, or device of the user. It can be used to prevent unauthorized access from outside the organization’s network or from untrusted devices. In this case, the user can connect to the database server from the home office, which is likely within the scope of the authentication policy, but not from the hotel room, which is outside the scope.

References:

CompTIA Server+ Certification Exam Objectives1, page 15

CompTIA Server+: Authentication & Authorization2

Data Loss Prevention (DLP) systems are designed to monitor and protect sensitive data from unauthorized access, use, or transmission. By enabling DLP on a fileshare, the system administrator can track how data is accessed and used over time.

After allowing the DLP system to run for a week, the administrator can audit the permissions of the fileshare. This involves reviewing which users and groups have access to the fileshare and determining if their permissions align with their roles and responsibilities. Auditing permissions helps identify any discrepancies or excessive privileges that could lead to potential data breaches or unauthorized data exposure.

Other Options:

A. Manage the fileshare from an RDP session: Remote Desktop Protocol (RDP) allows administrators to remotely manage servers and their resources. While this is a method to access the server, it doesn't directly relate to auditing or managing fileshare permissions.

C. Audit the access to the physical fileshare: Auditing physical access involves reviewing who has physical entry to the hardware where the fileshare resides. While important, enabling DLP focuses on monitoring digital access and data movement rather than physical security.

D. Manage the permissions from the fileshare: Managing permissions involves setting or modifying user access rights. However, before making changes, it's crucial to audit existing permissions to understand the current access control structure.

Therefore, after running DLP for a week, the appropriate action is to audit the permissions of the fileshare to ensure that access controls are properly configured and align with the principle of least privilege.

References:

CompTIA Server+ Certification Exam Objectives (SK0-005): Security and Disaster Recovery – Explain data security risks and mitigation strategies