CompTIA
CAS-003 · Question #24
CAS-003 Question #24: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-003 to reveal the answer and full explanation for question #24. The question stem and answer options stay visible for context.
Question
A software development team is conducting functional and user acceptance testing of internally developed web applications using a COTS solution. For automated testing, the solution uses valid user credentials from the enterprise directory to authenticate to each application. The solution stores the username in plain text and the corresponding password as an encoded string in a script within a file, located on a globally accessible network share. The account credentials used belong to the development team lead. To reduce the risks associated with this scenario while minimizing disruption to ongoing testing, which of the following are the BEST actions to take? (Choose two.)
Options
- ARestrict access to the network share by adding a group only for developers to the share's ACL
- BImplement a new COTS solution that does not use hard-coded credentials and integrates with
- CObfuscate the username within the script file with encoding to prevent easy identification and the
- DProvision a new user account within the enterprise directory and enable its use for authentication
- ERedesign the web applications to accept single-use, local account credentials for authentication
Unlock CAS-003 to see the answer
You've previewed enough free CAS-003 questions. Unlock CAS-003 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.