exam questions

Exam CAS-004 All Questions

View all questions & answers for the CAS-004 exam

Exam CAS-004 topic 1 question 451 discussion

Actual exam question from CompTIA's CAS-004
Question #: 451
Topic #: 1
[All CAS-004 Questions]

A company has been the target of LDAP injections, as well as brute-force, whaling, and spear-phishing attacks. The company is concerned about ensuring continued system access. The company has already implemented a SSO system with strong passwords. Which of the following additional controls should the company deploy?

  • A. Two-factor authentication
  • B. Identity proofing
  • C. Challenge questions
  • D. Live identity verification
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Steel16
1 week ago
Selected Answer: A
Two-factor authentication (2FA) requires users to provide not only their password but also a second form of identification, like a code sent to their phone or a security key, to access systems. This significantly strengthens security against brute-force attacks, whaling, and spear-phishing attempts. Even if an attacker obtains a username and password, they still won't be able to access the system without the additional verification.
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago