nerdexam
ExamsSY0-301Questions#166
CompTIA

SY0-301 · Question #166

SY0-301 Question #166: Real Exam Question with Answer & Explanation

The correct answer is A: User rights and permissions review. TACACS+ is an AAA (Authentication, Authorization, and Accounting) protocol that centralizes the management of who can access network devices and what they can do. Centralizing access control onto a single server makes it straightforward to audit, review, and modify user rights an

Question

A security administrator has been tasked to ensure access to all network equipment is controlled by a central server such as TACACS+. This type of implementation supports which of the following risk mitigation strategies?

Options

  • AUser rights and permissions review
  • BChange management
  • CData loss prevention
  • DImplement procedures to prevent data theft

Explanation

TACACS+ is an AAA (Authentication, Authorization, and Accounting) protocol that centralizes the management of who can access network devices and what they can do. Centralizing access control onto a single server makes it straightforward to audit, review, and modify user rights and permissions across all equipment from one place - directly supporting a user rights and permissions review strategy. This is a key risk mitigation technique: by consolidating access records, administrators can quickly identify excessive privileges or unauthorized accounts. Change management, DLP, and data theft prevention are separate risk domains not directly addressed by a centralized AAA system.

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full SY0-301 Practice