220-802 · Question #356
220-802 Question #356: Real Exam Question with Answer & Explanation
The correct answer is D: Place the router in a locked room.. With strong credentials already configured and wireless already disabled, the remaining vulnerability is physical access to the router sitting in an unsecured location. Placing the router in a locked room addresses this gap.
Question
Options
- ADisable the router's remote management feature.
- BEnable WPA2 wireless encryption.
- CChange the router's default admin name and password.
- DPlace the router in a locked room.
Explanation
With strong credentials already configured and wireless already disabled, the remaining vulnerability is physical access to the router sitting in an unsecured location. Placing the router in a locked room addresses this gap.
Common mistakes.
- A. Disabling remote management is a valid hardening step, but physical security is more immediately critical given the router's openly accessible location under the front desk.
- B. WPA2 wireless encryption is irrelevant because the scenario states wireless is already disabled on the router.
- C. The scenario explicitly states the router is already configured with strong device credentials, so changing default credentials has already been completed.
Concept tested. Physical security for network hardware in SOHO environments
Reference. https://www.cisa.gov/news-events/news/securing-network-infrastructure-devices
Community Discussion
No community discussion yet for this question.