CAS-005 · Question #442
CAS-005 Question #442: Real Exam Question with Answer & Explanation
The correct answer is A: Enable MFA.. Enable MFA: Multi-factor authentication ensures that passwords alone are insufficient to compromise accounts, directly satisfying the requirement that credentials can’t be the only factor for authentication. Implement a PAM system: A Privileged Access Management solution enforces
Question
A few security incidents involving user authentication issues occurred recently. The security team needs to implement technical controls that ensure: - User accounts are difficult to compromise. -Certain credentials are only used for specific applications. -Users are only able to perform functions specified for their specific roles. -Passwords are not the only requirement for user authentication. The security team has enabled role-based access control and password complexity requirements throughout the organization. Which of the following additional actions does the security team need to take? (Choose two.)
Options
- AEnable MFA.
- BEnable mandatory access control.
- CRequire the length of passwords to be 15 characters or more.
- DImplement a privileged access management system.
- EEnable OAuth.
- FRequire unsuccessful logins to be logged throughout the network.
Explanation
Enable MFA: Multi-factor authentication ensures that passwords alone are insufficient to compromise accounts, directly satisfying the requirement that credentials can’t be the only factor for authentication. Implement a PAM system: A Privileged Access Management solution enforces just-in-time, just- enough access for high-risk credentials and applications, ensuring those credentials are only used for their designated systems and functions. This also dovetails with RBAC to tightly control role permissions for sensitive accounts.
Community Discussion
No community discussion yet for this question.