CA SITEMINDER INTERVIEW QUESTIONS

Most Important Frequently Asked Ca Siteminder Interview Questions

Interview Quesions on Ca Siteminder

1. Question 1. What Are The Basic Steps That You Will Take To Stop Unauthorized Access?

   Answer :

   Well, there are certain things that can be done for this. The very first thing is to secure the important files with passwords. The data backup must also be protected through the same approach. It is necessary to enable firewall as it is very helpful in this matter. All the account on a company server that are no longer in use should immediately is suspended. It is also necessary to restrict the access of data to only those who work in a similar department or those who are authorized representative in an organization.

2. Question 2. Can You Name Some Parameters That Define Ssl Session Connection?

   Answer :

   1. Client writes Mac Secret
   2. Server write Mac secret
   3. Sequence numbers
   4. Client writes keys
   5. Server and client Random
   6. Initialization vectors.

Auditing Interview Questions

3. Question 3. What Do You Mean By The Term Protocols? Is It Possible To Change Them Once Defined?

   Answer :

   Protocols are generally a set of rules that are applicable to a process. When it comes to security and authenticity, it is necessary for users to obey all of them and make sure that the tasks or activities they are engaged in don’t violating them. With protocols, it is almost impossible to ensure network as well as identity management. Yes, it is possible to change the protocols anytime in case the need of same is felt.

4. Question 4. Name A Few Basic Methods For Effective Identity And Authenticity Management?

   Answer :

   Using a user name and a password approach is one of the common and in fact, the best way to manage them. In addition to this, securing user’s personal information is also helpful in this manner. Finger touch sensors are other methods that are quite common in the present scenario.

Restful web service Tutorial

5. Question 5. How You Will Define An Identity? Why It Is Necessary In An Organization?

   Answer :

   It is basically a set of information and data that is used to identify a user or a group. With having identity, it is not possible to ensure a secure environment in an organization. In addition to this, there are certain conflicts that can be created and machines often fail to perform their tasks.

Site Management Interview Questions

6. Question 6. What Exactly Do You Know About The Access Management And Identity Management?

   Answer :

   Access management assures web access management such as authorizing users to accomplish a task, authentication, avoiding fraud and handling other similar tasks. On the other side identity management help clients to simply manage identity lifecycle of those who work in an organization.

7. Question 7. Name Some Domains That Fall Under The Identity Management?

   Answer :

   There are several domains and a few of them are:

   1. Directory management 
   2. Access Management
   3. Identity Management directory
   4. OVD
   5. OID

Internal Audit Interview Questions

8. Question 8. What Benefits Access Management And Identity Management Can Derive?

   Answer :

   Well, there are certain benefits that can simply help organization to keep up the pace. The first, and in fact, the biggest benefit is cost saving. An organization can save a huge sum of money simply by considering this approach. Next big thing that can be assured is operational efficiency. In addition to this, business growth for e-commerce is another leading benefit due to which this technology is widely preferred in the current scenario.

9. Question 9. What Are The Tasks In Which Identity Management And Authenticity Management Matters The Most?

   Answer :

   There are certain tasks in an organization that are not revealed to all the employees. They need to be kept secret. However, sometimes employees need to be engaged in them. When they are allowed broader access to the information, it’s necessary to manage the same. There are certain chances while dealing on a special project that information may leak and businesses have to bear huge loss.

Restful web service Interview Questions

10. Question 10. What Do You Mean By The Term Authentication? Why It Is Necessary?

    Answer :

    It is basically a process that seems simple but in actual it is very complex. Any users have to prove his/her identity and have to provide a lot of credentials before access is allowed to the information or data. All such credentials are considered as authentic. It is necessary to make sure that no unauthorized person will gain access to confidential information or any data that can put a business on risk.

11. Question 11. What Exactly Do You Know About Authorization? Is It Different From Authentication?

    Answer :

    It decides whether a user is allowed to explore some data or information is not. It is possible for them to make requests to the network administrators or departments’ heads to gain access. It is basically performed through user’s access point as well as its URL. There are certain policies that restrict the access of data. Both authorization and authentication are different approaches. The common thing in both of them is they contribute together to enhance the security of the information in a business.

Chartered accountant Interview Questions

12. Question 12. What Do You Know About The Url Manipulation?

    Answer :

    It is an attack basically that hackers consider for manipulating the URL of a website. This is done to get access to the critical information. However, it is possible to stop them from performing this task.

Auditing Interview Questions

13. Question 13. How You Will Authenticate A Person Or A User?

    Answer :

    The first and in fact, the most common approach is passwords that they have. These are basically the secret piece of information that no one else except the authorization users have. Next approach is biometrics which is becoming more and more common in the present scenario. In addition to this, access cards can be offered to the users for allowing them to enter the restricted areas such as server rooms.

14. Question 14. What Is Remote Administration? Can It Cause Risk To The Business Data And Information?

    Answer :

    Remote access is a common approach. It is basically a method which enable a user to control a PC without his/her physical presence at the site. The device can be controlled through a remote connection which is based on internet. Remote access is generally given to the internal resources. In case an unauthorized person outside the organization is given such an access, there are certain chances of data and information leakage.

15. Question 15. If Web Server Is Made To Run On Default Settings, Can It Cause A Security Issue?

    Answer :

    Yes, there are certain chances for that. Actually web servers on default settings are vulnerable to hackers and attackers. It can even fail secure access management and can create issues such as data loss and leakage in no time. The server settings must be customized based on software and application that are used in an organization for the purpose of protecting the data.

Netezza Interview Questions

16. Question 16. If You Want To Enter Authentication Information On A Login Page Which Appeared In A Pop Up Window, Would You Proceed Or Will Not Enter The Information? Why Or Why Not?

    Answer :

    No, I will not enter the authentication information. This is because it can be a virus, a page web page or which is against the security policies. Anyone must avoiding entering confidential or useful information on such pop-up pages.

17. Question 17. Name The Two Methods By Which Penetrating Tests Can Be Considering?

    Answer :

    Black Box Testing and White Box Testing are the two methods. It can also be done through another approach which is known as Grey Box.

SiteCore Interview Questions

18. Question 18. Name Some Attributes Of Security Testing?

    Answer :

    These are:

    1. Non-repudiation
    2. Authentication
    3. Confidentiality
    4. Resilience
    5. Availability
    6. Authorization
    7. Integrity

Site Management Interview Questions

19. Question 19. If The Web Servers Are Down, Will You Prefer To Share The Communication Or Personal Information Through Your Personal E-mail Account?

    Answer :

    Well, if the information is too sensitive, I wouldn’t go for it. However, if the same need to be conveyed on urgent basis, I will seek the information of top management or security analyst and will proceed after getting the permissions only.

20. Question 20. What Do You Know About Phishing On A Network? How It Can Be Harmful For An Organization?

    Answer :

    It is basically an approach that hackers and other people use to get information about an organization. Basically, they create fake web pages which appear similar to that of the actual ones. They try to put them on the users screen and wait for them to enter their username and passwords. To avoid this issue, one must make sure that the web address of the URL is same as that of the organization name. Phishing can lead to hacking accounts and unauthorized access to the information that no organization want to share with anyone who is not an employee of them.

Website Builder Interview Questions

21. Question 21. What There Is Always A Restriction On One Department To Access The Data Of Other Department In An Organization?

    Answer :

    Well, obviously, for the security reasons. Let a user name Mr. X is working is purchase department and a user Mr. Y is working in Information Technology department. Both of them don’t need data of each other department. If they show any such intention, maybe it’s because they want to share it with anyone. Thus to avoid such a risk, organizations impose such restrictions. It helps them enhance their security up to a great extent.

22. Question 22. Name Any Two Strategies That Are Useful In Making Web Access Management More Secure?

    Answer :

    Installation of anti-spyware software and having latest security updates can help a lot in this matter.

23. Question 23. What According To You Are The Major Challenges In The Current Scenario For Web Access Management Systems?

    Answer :

    1. Key issues in understanding the HTTP
    2. Frequent change in SSL approaches
    3. Centralized Remote access to machines
    4. System alerting approaches and mechanisms
    5. Updating policies

24. Question 24. What Is Security Testing?

    Answer :

    It is basically an approach to check if there is any glitch in the security mechanisms of any data. It plays a vital role in securing an application simply. Security analysts can keep themselves up to date with all the major challenges that can affect their work and can detect and remove bugs immediately..

Internal Audit Interview Questions

25. Question 25. What Exactly Do You Understand By Intrusion Detection?

    Answer :

    It is basically an approach that is useful in detecting the possible attacks by hackers and intruders and dealing with the same. It includes collecting the information and finding the possible ways to stop the hacker’s attacks. Sometime auditing the system data can also be a part of this approach.

26. Question 26. What Do You Know About Penetration Testing?

    Answer :

    It is basically a method to detect several vulnerabilities in a system. It can be done manually or through automated approaches and it aims to evaluate the system security. Just like other approaches, the prime objective of this is to ensure the system stay protected against the attacks. In this approach, if vulnerability is found, the same is used to find others after understanding its behavior and cause.

27. Question 27. How You Will Protect A Password File?

    Answer :

    Password files access control and second is Hashed passwords. This is because they are not simple to crack and they cannot be judged simply.

Restful web service Interview Questions

28. Question 28. Do You Think Iso 17799 Have Any Benefit?

    Answer :

    Yes, there are certain benefits. It unveils the best practices that can be taken for information security management. All organizations irrespective of their size can go for this approach as there are a lot of useful guidelines that can simply be followed. Also, it provides useful information on securing web access management with some simple policies that can be trusted in the long run.

29. Question 29. What Do You Think Can Cause Vulnerabilities In Web Access Management Security?

    Answer :

    There are certain factors that can be the reason for this and a few of them are:

    1. Password sharing with those who are not authorized to access information
    2. Designs errors
    3. Human errors
    4. Complex software and applications

30. Question 30. What Do You Mean By Host Intrusion Detection System? Name The Three Classes Of Intruders?

    Answer :

    It is basically a snapshot based mechanism. It takes snapshots of systems and compares them with the previous snapshots. The aim is to detect whether the files have changed or if they are missing. If a problem is there, it immediately sends an alert to the administrator. The three classes of intruders are clandestine users, Misfeasor and Masquerader.

Topic: Ca Siteminder Interview Questions
Interview Quesions on Ca Siteminder