220-1102 Question #857: Real Exam Question with Answer & Explanation

Question

A systems administrator receives notification about unauthorized access to company resources outside normal business hours. Which of the following security measures should the systems administrator implement to prevent further unauthorized use?

Options

• APerimeter firewalls
• BSSL-enabled DNS
• CAnonymizing VPNs
• DMultifactor authentication

Explanation

To prevent unauthorized access, particularly outside business hours where credentials may be compromised, implementing multifactor authentication (MFA) is the most effective security measure. MFA requires an additional verification step beyond just a password, significantly increasing security.

Common mistakes.

• A. Perimeter firewalls control network traffic at the boundary, but they typically allow access for legitimate credentials. If an attacker possesses valid credentials, a firewall alone will not prevent them from accessing internal resources.
• B. SSL-enabled DNS (DNS over HTTPS/TLS) encrypts DNS queries to enhance privacy and prevent DNS manipulation, but it does not directly prevent unauthorized login attempts to company resources using compromised credentials.
• C. Anonymizing VPNs are used to obscure a user's IP address and internet activity, which is generally not a security measure an organization would implement for its own resources to prevent unauthorized access; rather, it makes tracking legitimate and illegitimate access more difficult.

Concept tested. Multifactor authentication (MFA)

Reference. https://learn.microsoft.com/en-us/azure/active-directory/authentication/concept-mfa-howitworks

No community discussion yet for this question.