Exam SY0-501 topic 1 question 330 discussion

In terms of balancing efficiency and security assuming 10 points to be balanced on A - efficiency 10/10 and security 0/10 Very insecure to open up to the internet and could cause a network breach but very easy to do. B - efficiency 0/10 and security 10/10 Would be a lot of hassle for the vendor to a remote location but very secure as there is no network exposure. C - efficiency 2/10 and security 9/10 Setting up a vpn concentrator, authentication mechanisms and configuring all the rules for a one off fix to a legacy system for it to only be used once would be a lot of effort. However, the VPN would be a very secure and tightly controlled way for them to access the network. D - efficiency 10/10 and security 9/10 Barely any effort to setup teamviewer or a similar app which is already widely used for them to view your computer screen. The app will only be viewable and accessible via your already established connection. Just keep in mind too, D is typically done by most third party software support companies for their support contract on behalf of the IT dept!

As difficult as it is to keep everything straight, details matter. For the question to state that they have no internet, and suggest an answer that supports the use of an internet is confusing to the tester. Comptia make it plain and help us out!

It should D

Comptia is driving me nuts with these questions.

The other source says the answer is A. It doesn't say the organization doesn't have internet access, it says the PACS doesn't have internet access because of the legacy operating system. A VPN seems the most secure though.

C. Set up VPN concentrator for the vendor and restrict access to the PACS using desktop sharing The answer selected is correct in that the VPN you are setting up is to ensure that the vendor's access to your network is secure. Using the VPN will make the vendor appear like he is physically present on your network. You the administrator can now log in to the PACS and use desktop sharing or directly enable desktop sharing on the PACS so the vendor can do hi job, Remember: you will be restricting his access to the PACS only (security) and solving the issue does not require you waiting for the vendor to be physically present nor are people denied access in/out of the premises (efficiency)

D sounds much better an option to support both security and efficiency

Why not A? Can anyone Explain? It can temporary give access to outbound Internet Service

How is it not D? You can set up a web conference on the admin's PC, remote into the PACS (you don't need internet access for that if on the same LAN), and then use screen sharing via the web conference app.

I think it says it does not currently have internet connection because it is not safe to provide internet access to a Legacy system.

Note that to use VPN services you must have internet access. ... Virtual Private Network encrypts your traffic that flows through the VPN server you connect to, and makes your connection untraceable, however, to access the server you must have internet connection.

Why not B ?