nerdexam
CompTIA

CV0-003 · Question #280

A cloud administrator is configuring a bastion host. The bastion host will be used to administer systems in the cloud remotely from the administrator's on-premises desktop. The administrator is given

Sign in or unlock CV0-003 to reveal the answer and full explanation for question #280. The question stem and answer options stay visible for context.

Security

Question

A cloud administrator is configuring a bastion host. The bastion host will be used to administer systems in the cloud remotely from the administrator's on-premises desktop. The administrator is given the following requirements:

  • Ensure port 22 is open on the host and only allow the public IP of

the on-premises router/firewall.

  • Ensure port 3389 is open on the host and only allow the public IP of

the on-premises router/firewall.

  • Harden these services with PKI (where applicable).

Given this scenario, which of the following should the administrator utilize to BEST address these requirements? (Select THREE).

Options

  • ARDP protocol from the desktop to the bastion host
  • BTelnet protocol from the desktop to the bastion host
  • CSSH protocol from the desktop to the bastion host
  • DMD5 and RC4 with a signed certificate
  • ERSA and AES with a signed certificate
  • FBlowfish and SHA-1 with a signed certificate
  • GVNC protocol from the desktop to the bastion host

Unlock CV0-003 to see the answer

You've previewed enough free CV0-003 questions. Unlock CV0-003 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Topics

#bastion host#SSH#PKI#RDP
Full CV0-003 Practice