Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

CompTIA Exam CAS-005 Topic 3 Question 8 Discussion

Actual exam question for CompTIA's CAS-005 exam
Question #: 8
Topic #: 3
[All CAS-005 Questions]

A user reports application access issues to the help desk. The help desk reviews the logs for the user

Which of the following is most likely The reason for the issue?

Show Suggested Answer Hide Answer
Suggested Answer: A

Based on the provided logs, the user has accessed various applications from different geographic locations within a very short timeframe. This pattern is indicative of the 'impossible travel' security rule, a common feature in Single Sign-On (SSO) systems designed to detect and prevent fraudulent access attempts.

Analysis of Logs:

At 8:47 p.m., the user accessed a VPN from Toronto.

At 8:48 p.m., the user accessed email from Los Angeles.

At 8:48 p.m., the user accessed the human resources system from Los Angeles.

At 8:49 p.m., the user accessed email again from Los Angeles.

At 8:52 p.m., the user attempted to access the human resources system from Toronto, which was denied.

These rapid changes in location are physically impossible and typically trigger security measures to prevent unauthorized access. The SSO system detected these inconsistencies and likely flagged the activity as suspicious, resulting in access denial.


CompTIA SecurityX Study Guide

NIST Special Publication 800-63B, 'Digital Identity Guidelines'

'Impossible Travel Detection,' Microsoft Documentation

by Ma at Jan 13, 2025, 06:21 PM

Limited Time Offer

25%

Off

Get Premium CAS-005 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Farrah
2 months ago
But what if it's option D, the user didn't connect from an approved subnet?
upvoted 0 times
...
Charlena
2 months ago
I disagree, I believe it's option B, a threat actor compromised the account.
upvoted 0 times
...
Nickie
2 months ago
Haha, these answers are getting more and more creative! I'm starting to feel like I'm in an episode of 'The IT Crowd'.
upvoted 0 times
Anna
2 months ago
B) A threat actor has compromised the user's account and attempted to log
upvoted 0 times
...
Onita
2 months ago
A) The user inadvertently tripped the impossible travel security rule in the SSO system.
upvoted 0 times
...
...
Nida
2 months ago
Connecting from an approved subnet? Ah, the joys of corporate IT policies. I bet the user just forgot to VPN in.
upvoted 0 times
...
Farrah
3 months ago
I think the reason could be option A, the user tripped the security rule.
upvoted 0 times
...
Tawanna
3 months ago
Not allowed to access HR outside of business hours? Looks like someone's trying to keep their work and personal life separate. Good luck with that!
upvoted 0 times
Whitley
1 months ago
C: The logs will tell us the real reason for the access issue.
upvoted 0 times
...
Shawnee
2 months ago
B: Maybe they just needed to finish up some work.
upvoted 0 times
...
Anjelica
2 months ago
A: Looks like someone's trying to access HR outside of business hours.
upvoted 0 times
...
...
Carylon
3 months ago
A threat actor compromising the user's account? Looks like we've got a real-life hacker on our hands. Time to call in the cyber-police!
upvoted 0 times
...
Salley
3 months ago
The impossible travel security rule? That's a new one! Sounds like something straight out of a spy movie.
upvoted 0 times
Nadine
2 months ago
C) The user is not allowed to access the human resources system outside of business hours.
upvoted 0 times
...
Tori
2 months ago
A) That's crazy! I hope they catch that threat actor soon.
upvoted 0 times
...
Cecilia
2 months ago
B) A threat actor has compromised the user's account and attempted to log in.
upvoted 0 times
...
Jestine
2 months ago
A) The user inadvertently tripped the impossible travel security rule in the SSO system.
upvoted 0 times
...
...

Save Cancel