nerdexam
ExamsCV0-003Questions#431
CompTIA

CV0-003 · Question #431

CV0-003 Question #431: Real Exam Question with Answer & Explanation

The correct answer is B: Whitelist the URLs.. Whitelisting (allowlisting) specific URLs in a web proxy is the correct way to permit access to validated legitimate sites without disabling security controls entirely.

Question

A cloud-based web proxy is blocking key sites that a business requires for operation. After validation, the sites are legitimate, and access is required for end users to complete their work. Which of the following is the BEST solution to allow access to the sites?

Options

  • AInstruct users to bypass the cloud-based web proxy.
  • BWhitelist the URLs.
  • CBlacklist the URLs.
  • DCreate a security group for those users and enforce MFA.

Explanation

Whitelisting (allowlisting) specific URLs in a web proxy is the correct way to permit access to validated legitimate sites without disabling security controls entirely.

Common mistakes.

  • A. Instructing users to bypass the proxy removes all filtering protections for those users, creating a broad security gap rather than a targeted exception for specific sites.
  • C. Blacklisting the URLs would add them to a block list, which further denies access rather than allowing it, achieving the opposite of the desired outcome.
  • D. Creating a security group and enforcing MFA addresses authentication strength but does not resolve the proxy blocking rule that is preventing access to the sites.

Concept tested. URL allowlisting in cloud-based web proxy

Reference. https://learn.microsoft.com/en-us/defender-endpoint/web-content-filtering

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CV0-003 Practice