nerdexam
ExamsCV0-003Questions#800
CompTIA

CV0-003 · Question #800

CV0-003 Question #800: Real Exam Question with Answer & Explanation

The correct answer is D: System hardening. System hardening restricts user privileges and removes unnecessary capabilities such as the ability to install software, directly preventing prohibited application installation on VDI instances.

Security

Question

A VDI provider suspects users are installing prohibited software on the instances. Which of the following must be implemented to prevent the issue?

Options

  • ALog monitoring
  • BPatch management
  • CVulnerability scanning
  • DSystem hardening

Explanation

System hardening restricts user privileges and removes unnecessary capabilities such as the ability to install software, directly preventing prohibited application installation on VDI instances.

Common mistakes.

  • A. Log monitoring can detect that prohibited software was installed but does not prevent the installation from occurring in the first place.
  • B. Patch management keeps software up to date to remediate known vulnerabilities, but it does not restrict users from installing unauthorized applications.
  • C. Vulnerability scanning identifies security weaknesses in existing software configurations, but it does not enforce controls that block software installation by users.

Concept tested. VDI endpoint security through system hardening

Reference. https://learn.microsoft.com/en-us/windows/security/operating-system-security/device-management/windows-security-configuration-framework/windows-security-baselines

Topics

#VDI#system hardening#application control#endpoint security

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CV0-003 Practice