NETSEC-GENERALIST · Question #66
Which two components of a Security policy, when configured, allow third-party contractors access to internal applications outside business hours? (Choose two.)
The correct answer is A. User-ID B. Schedule. To restrict access to specific users at specific times, two Security policy components are required. User-ID (A) identifies who the traffic belongs to, enabling the policy to target third-party contractors specifically rather than all users. Schedule (B) defines the days and time
Question
Which two components of a Security policy, when configured, allow third-party contractors access to internal applications outside business hours? (Choose two.)
Options
- AUser-ID
- BSchedule
- CService
- DApp-ID
How the community answered
(24 responses)- A79% (19)
- C8% (2)
- D13% (3)
Explanation
To restrict access to specific users at specific times, two Security policy components are required. User-ID (A) identifies who the traffic belongs to, enabling the policy to target third-party contractors specifically rather than all users. Schedule (B) defines the days and time windows during which the rule is active, enabling enforcement only outside business hours. Service (C) specifies ports and protocols but does not address identity or time constraints. App-ID (D) identifies the application being used but alone cannot enforce time-based or user-based access restrictions - it would need to be combined with User-ID and Schedule.
Topics
Community Discussion
No community discussion yet for this question.