CompTIA Security+ (SY0-401) Access Control and Identity Management

This course covers domain 05 of the CompTIA Security+ SY0-401 certification exam. This course deals with controlling user access and identity management tools and techniques.
Access control and identity management is crucial to maintaining and secure environment. Various hardware controls like RADIUS, TACACS+ and XTACACS are covered, along with directory services and authentication services like Kerberos, LDAP, SAML, and Secure LDAP. The differences between identification, authentication, and authorization are covered, along with the various tools used to ensure users are connected securely with access to resources they need. Technologies and concepts including tokens, multi-authentication, TOTP, HOTP, CHAP, and PAP are covered, along with authentication factors.

Authentication Services
Module Overview
RADIUS
TACACS, XTACACS
TACACS+
Kerberos
LDAP
Secure LDAP
SAML
Module Review
Authentication, Authorization, and Access Control
Review
Identification vs. Authentication vs. Authorization
Identification
Personal Identification Verification Card
Username
Authentication
Tokens
Common Access Card
Multifactor Authentication
TOTP
HOTP
CHAP
PAP
Single Sign-on
Access Control
Implicit Deny
Trusted OS
Authentication Factors
Authorization
Separation of Duties
ACLs
Mandatory Access Control
Discretionary Access Control
Role Based and Rule Based Access Control (RBAC)
Time of Day Restrictions
Federation
Transitive Trust/Authentication
Module Review
Account Management Security Controls
Module Overview
User with Multiple Accounts
Shared Accounts
Account Policy Management
Group Policy
Password Complexity
Expiration
Recovery
Disablement
Lockout
Password History
Password Reuse
Password Length
Generic Account Prohibition
Group Based Privileges
User Assigned Privileges
User Access Reviews
Continuous Monitoring
Module Review