shieldCISSP Practice Domain 5 — Identity and Access Management (IAM) Q7 of 120

Which authentication factor type is described by 'something you have'?

A CISSP practice question covering Domain 5: Identity and Access Management (IAM). Try answering before reading the explanation below.

▶ Show options & answer

Password or PIN

Fingerprint

Hardware token or smart card

✓ Correct answer

Behavioral typing pattern

Why "Hardware token or smart card" is the right answer

'Something you have' = a possession factor like a hardware token, smart card, or phone-based authenticator app. Passwords are 'something you know'. Fingerprints and behavioral patterns are 'something you are'.

Study videos for this topic

Want to go deeper on Domain 5? Watch the full breakdown — every video is free, no account, no upsell.

CISSP Domain 5: Authentication, MFA & Passkeys

Domain 5 — Identity and Access Management (IAM)

CISSP Domain 5: SSO, SAML, OAuth, OIDC & Kerberos

Domain 5 — Identity and Access Management (IAM)

CISSP Domain 5: DAC, MAC, RBAC, ABAC Explained

Domain 5 — Identity and Access Management (IAM)

CISSP Domain 5: Identity Lifecycle & PAM Explained

Domain 5 — Identity and Access Management (IAM)

Take the full CISSP practice test

120 questions, instant explanations, study-video links on every miss. No account.

Start full test →

Which authentication factor type is described by 'something you have'?

Study videos for this topic

Other practice tests