nerdexam
(ISC)2

CISSP · Question #142

Refer to the information below to answer the question. A new employee is given a laptop computer with full administrator access. This employee does not have a personal computer at home and has a child

The correct answer is A. Removing employee's full access to the computer. The best way to prevent the P2P program from being installed on the computer is to remove the employee's full access to the computer. Full access or administrator access means that the user has the highest level of privilege or permission to perform any action or operation on the

Submitted by takeshi77· Mar 5, 2026Identity and Access Management

Question

Refer to the information below to answer the question. A new employee is given a laptop computer with full administrator access. This employee does not have a personal computer at home and has a child that uses the computer to send and receive e-mail, search the web, and use instant messaging. The organization's Information Technology (IT) department discovers that a peer-to-peer program has been installed on the computer using the employee's access. Which of the following could have MOST likely prevented the Peer-to-Peer (P2P) program from being installed on the computer?

Options

  • ARemoving employee's full access to the computer
  • BSupervising their child's use of the computer
  • CLimiting computer's access to only the employee
  • DEnsuring employee understands their business conduct guidelines

How the community answered

(30 responses)
  • A
    77% (23)
  • B
    13% (4)
  • C
    3% (1)
  • D
    7% (2)

Explanation

The best way to prevent the P2P program from being installed on the computer is to remove the employee's full access to the computer. Full access or administrator access means that the user has the highest level of privilege or permission to perform any action or operation on the computer, such as installing, modifying, or deleting any software or file. By removing the employee's full access to the computer, and assigning them a lower level of access, such as user or guest, the organization can restrict the employee's ability to install unauthorized or potentially harmful programs, such as P2P programs, on the computer. Supervising their child's use of the computer, limiting computer's access to only the employee, and ensuring employee understands their business conduct guidelines are not the best ways to prevent the P2P program from being installed on the computer, as they are related to the monitoring, control, or awareness of the computer usage, not the restriction or limitation of the computer access.

Topics

#least privilege#access control#user privileges#endpoint security

Community Discussion

No community discussion yet for this question.

Full CISSP Practice