CISSP · Question #321
In an organization where Network Access Control (NAC) has been deployed, a device trying to connect to the network is being placed into an isolated domain. What could be done on this device in order t
The correct answer is B. Apply remediation's according to security requirements. When a NAC system places a device in an isolated/quarantine domain, it means the device has failed a posture assessment check and must be remediated to meet security policy before gaining full network access.
Question
In an organization where Network Access Control (NAC) has been deployed, a device trying to connect to the network is being placed into an isolated domain. What could be done on this device in order to obtain proper connectivity?
Options
- AConnect the device to another network jack
- BApply remediation's according to security requirements
- CApply Operating System (OS) patches
- DChange the Message Authentication Code (MAC) address of the network interface
How the community answered
(48 responses)- A13% (6)
- B75% (36)
- C8% (4)
- D4% (2)
Why each option
When a NAC system places a device in an isolated/quarantine domain, it means the device has failed a posture assessment check and must be remediated to meet security policy before gaining full network access.
Connecting to a different network jack does not change the device's compliance posture; NAC enforcement is tied to the device's identity and health state, not its physical port location.
NAC solutions perform posture assessments against defined security policies (e.g., antivirus signatures, patch levels, firewall status), and when a device fails, it is quarantined in an isolated VLAN or domain. The correct resolution is to apply the required remediations - such as updating AV definitions, enabling a firewall, or installing patches - so the device passes the posture check and is moved to the authorized network segment.
Applying OS patches may be one specific remediation, but it is not universally sufficient because the NAC posture failure could be due to any number of policy violations (e.g., missing antivirus, disabled firewall), making 'apply remediations' the broader and correct answer.
Changing the MAC address is a form of spoofing and does not address the underlying compliance failure; NAC systems evaluate device health through agents or posture checks, not solely by MAC address identification.
Concept tested: NAC posture assessment and quarantine remediation
Source: https://learn.microsoft.com/en-us/mem/intune/protect/network-access-control-integrate
Topics
Community Discussion
No community discussion yet for this question.