220-1002 Question #505: Real Exam Question with Answer & Explanation

The correct answer is A: Access control lists. The administrator will most likely use Access Control Lists (ACLs) to implement access restrictions. ACLs are the technical mechanism used to specify which users or groups can access which resources (files, folders, network shares, etc.) and what actions they can perform. This is

Question

An administrator is creating a new user account and wants to grant access to only the resources required to perform the user's assigned job duties. Which of the following will the administrator MOST likely use?

Options

AAccess control lists
BMultifactor authentication
CDirectory permissions
DPrinciple of least privilege

Explanation

The administrator will most likely use Access Control Lists (ACLs) to implement access restrictions. ACLs are the technical mechanism used to specify which users or groups can access which resources (files, folders, network shares, etc.) and what actions they can perform. This is the practical tool that enforces the Principle of Least Privilege - the concept that users should only have the minimum access needed to do their job. While D (Principle of Least Privilege) describes the security philosophy guiding the decision, ACLs are what the administrator actually configures in an operating system or network device to enforce those restrictions. Multifactor authentication (B) controls how users authenticate, not what they can access. Directory permissions (C) is a subset of access control but less comprehensive than ACLs.

Community Discussion

No community discussion yet for this question.

Full 220-1002 Practice