CAS-003 · Question #450
CAS-003 Question #450: Real Exam Question with Answer & Explanation
The correct answer is D: Issue a certificate to the printer and use certificate-based authentication. Certificate-based authentication allows a device like a printer to authenticate to the network using a digital certificate without requiring human credentials, satisfying the policy requirement while remaining practical. It is the most secure device-level authentication method av
Question
Options
- ARequest an exception to the corporate policy from the risk management committee
- BRequire anyone trying to use the printer to enter their username and password
- CHave a help desk employee sign in to the printer every morning
- DIssue a certificate to the printer and use certificate-based authentication
Explanation
Certificate-based authentication allows a device like a printer to authenticate to the network using a digital certificate without requiring human credentials, satisfying the policy requirement while remaining practical. It is the most secure device-level authentication method available.
Common mistakes.
- A. Requesting a policy exception bypasses the security requirement rather than meeting it, increasing risk without providing any technical control.
- B. Requiring users to enter credentials to use the printer authenticates the person, not the device, and does not satisfy a policy requiring all devices on the network to be authenticated.
- C. Having a help desk employee sign in daily is a manual, non-scalable workaround that still authenticates a person rather than the device itself, and leaves the printer unauthenticated for most of the day.
Concept tested. Certificate-based device authentication for network access control
Reference. https://learn.microsoft.com/en-us/windows-server/networking/technologies/nps/nps-certificates-plan
Community Discussion
No community discussion yet for this question.