CNX-001 · Question #18
CNX-001 Question #18: Real Exam Question with Answer & Explanation
Sign in or unlock CNX-001 to reveal the answer and full explanation for question #18. The question stem and answer options stay visible for context.
Question
A customer asks a MSP to propose a ZTA design for its globally distributed remote workforce. Given the following requirements: - Authentication should be provided through the customer's SAML identity provider. - Access should not be allowed from countries where the business does not operate. - Secondary authentication should be added to the workflow to allow for passkeys. - Changes to the user's device posture and hygiene should require reauthentication into the network. - Access to the network should only be allowed to originate from corporate-owned devices. Which of the following solutions should the MSP recommend to meet the requirements?
Options
- A- Enforce certificate-based authentication.
- B- Enforce posture assessment only during the initial network log-on.
- C- Chain the existing identity provider to a new SAML.
- D- Configure geolocation settings to block certain IP addresses.
Unlock CNX-001 to see the answer
You've previewed enough free CNX-001 questions. Unlock CNX-001 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.