DumpsBox
Home/cisco/Free Cisco 200-201 Actual Exam Questions/Question 6
← Back to Exam

Free Cisco 200-201 Actual Exam Questions - Question 6 Discussion

Question No. 6
What is the difference between mandatory access control (MAC) and discretionary access control
(DAC)?
Select one option, then reveal solution.
US
II
Imran I.
2026-02-20

C/D? MAC is more about system or admin control, not owners, and DAC lets owners decide access. D sounds off since MAC isn’t just object-based but policy-based, so C seems clearer here.

0
II
Imran I.
2026-02-05

Maybe C makes sense too because MAC is generally enforced by the system or security policies set by administrators, not the owners themselves. DAC usually gives the owner control over permissions, which matches the idea that it’s less rigid and more user-driven. A is close but the way it phrases MAC being controlled by an administrator doesn’t fully capture that it’s enforced by the system or a central policy, so C seems like a clearer distinction here.

0
II
Imran I.
2026-02-03

C, because MAC is enforced by the OS or admin, DAC lets owners set permissions.

0
II
Imran I.
2026-01-30

I’m sticking with A since MAC is about policies set by admins or the system, not the owner’s choice, while DAC lets owners decide who accesses their stuff. The bit about “administrator” in MAC fits better than saying the OS controls DAC—that’s more about enforcement, not control. Plus, C flips who controls what. So A makes the most sense based on typical definitions.

0
AH
Ash H.
2026-01-29

Probably A, since DAC lets the owner decide access, while MAC is set by higher authority like admins, not the owner’s choice. That matches the key difference about who controls permissions.

0
AH
Ash H.
2026-01-29

Actually, I’d rule out B and D because they mix up what MAC and DAC really mean. MAC isn’t about being “object-based access,” and DAC isn’t the strictest control. The core difference is who sets and enforces the access rules: MAC is policy-driven by admins or the system, not owners, while DAC lets owners decide who can access their resources. So C makes sense since MAC policies come from admins and DAC enforcement relies on owner decisions but is still handled by the OS. The key is that MAC enforces fixed policies, whereas DAC is more flexible but less strict.

0
IO
Irfan O.
2026-01-27

It’s C because MAC is enforced by system admins through policies, while DAC lets users control access, but the OS enforces those user decisions. So, the OS plays a key role in DAC enforcement here.

0
MK
Marco K.
2026-01-25

I don’t think A is right because MAC isn’t at the owner’s discretion—it’s system-enforced. Also, DAC usually lets owners decide access, so that part flips the roles. Could the key be who sets the policies rather than who controls them day-to-day?

0
JF
Jason F.
2026-01-23

B seems off because DAC isn’t just about objects; it’s more about user discretion. MAC being the strictest fits since it enforces system-wide policies strictly, unlike DAC’s flexibility.

0
RT
Rizwan T.
2026-01-15

C, because DAC lets owners decide, MAC is admin-enforced.

0
RD
Rayan D.
2026-01-15

B imo

0