Exam SY0-701 topic 1 question 9 discussion

A. Multifactor; there's a need to add "something you have", apart from "something you (they) know".

Multifactor Authentication

Doesnt the question ask which of the following which implies more than one?

ultifactor Authentication (MFA) adds an extra layer of security beyond just a password. Even if an attacker manages to obtain a user's password, they would still be unable to log in without providing additional verification (such as a code from a mobile device, a biometric factor, or a hardware token). This additional layer makes unauthorized access significantly more difficult to achieve, thus preventing attacks like the one described.

MFA is the best way to prevent unauthorized access, even if attackers have compromised passwords. It provides an additional layer of defense against this type of attack.

MFA should be required

To prevent unauthorized logins from suspicious IP addresses and enhance the security of user accounts, the administrator should implement: A. Multifactor authentication Multifactor authentication (MFA) requires users to provide two or more verification factors to gain access to a resource such as an application, online account, or VPN. This security measure significantly reduces the likelihood of unauthorized access because even if an attacker has the password, they would still need the additional verification factor(s), such as a code from a mobile device, a fingerprint, or a hardware token.

In this scenario, the administrator has identified that users' accounts are being accessed from suspicious IP addresses, suggesting that unauthorized parties have obtained the users' passwords. Simply resetting passwords does not address the root of the problem, as attackers could potentially gain access again if they acquire the new passwords. Blocking Unauthorized Login Attempts: The attacker would be unable to complete the login process from a suspicious IP address without the second authentication factor, preventing the compromise from succeeding. Also, Immediate User Awareness: Users will become immediately aware of unauthorized attempts on their accounts if they receive unexpected MFA prompts, allowing them to report suspicious activity to administrators quickly.

A. implement Multi-Factor Authentication (MFA) serves as an additional security measure.

For me : A