Question

A technician is validating compliance with organizational policies. The user and machine accounts in the AD are not set to expire, which is non-compliant.

Which of the following network tools would provide this type of information?

A. SIEM server
B. IDS appliance
C. SCAP scanner
D. HTTP interceptor

Answer 1

The correct network tool for validating account expiration settings in Active Directory against organizational policies is the SCAP scanner. It is designed to audit and ensure systems meet security compliance requirements.

Step-by-step explanation:

A technician is validating compliance with organizational policies, particularly finding out if user and machine accounts in Active Directory (AD) are set to expire as per the policies. The network tool that would provide information about account expirations is a SCAP scanner, as it is designed to audit and monitor the security configuration and compliance of systems against a set of defined criteria.

An SIEM server (Security Information and Event Management) is typically used for real-time monitoring, correlation of events, and security notifications. While an IDS appliance (Intrusion Detection System) is used to detect unauthorized intrusions or breaches.

An HTTP interceptor is used to capture and analyze HTTP traffic between the client and server. Therefore, option C, SCAP scanner, is the correct tool that should be used to check for account expiration settings in accordance with organizational policies.