Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
exam questions

Exam CISSP All Questions

View all questions & answers for the CISSP exam

Exam CISSP topic 1 question 320 discussion

Actual exam question from ISC's CISSP
Question #: 320
Topic #: 1
[All CISSP Questions]

What is the benefit of using Network Admission Control (NAC)?

  • A. NAC only supports Windows operating systems (OS).
  • B. NAC supports validation of the endpoint's security posture prior to allowing the session to go into an authorized state.
  • C. NAC can require the use of certificates, passwords, or a combination of both before allowing network admission.
  • D. Operating system (OS) versions can be validated prior to allowing network access.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
stickerbush1970
Highly Voted 2 years, 2 months ago
Selected Answer: B
I think both B and C have some good qualities, but I ma going with B. NAC validates that the posture or state of endpoint devices complies with security policies before the devices can access protected areas of the network. For devices that comply with the security policies, NAC allows access to protected services in the network. For devices that do not comply with security policies, NAC allows access to the network only for remediation, when the posture of the device is checked again.
upvoted 11 times
jackdryan
1 year, 6 months ago
B is correct
upvoted 1 times
...
...
Cww1
Highly Voted 2 years, 2 months ago
going for B
upvoted 8 times
...
CCNPWILL
Most Recent 5 months, 3 weeks ago
Selected Answer: B
question needs. the word PRIMARY benefit. not just benefit. Answer is B.
upvoted 1 times
...
MP26
7 months ago
Benefit vs benefits. B is better in these context.
upvoted 1 times
...
GuardianAngel
9 months, 3 weeks ago
https://docs.genians.com/release/en/intro.html; NAC can require the use of certificates, passwords, or a combination of both before allowing network admission. It doesn't just provide access for 'endpoints' to web apps stated so if we take that answer literally as written - it's not as correct as the only correct answer which is " NAC can require the use of certificates, passwords, or a combination of both before allowing network admission.'
upvoted 1 times
...
YesPlease
11 months, 1 week ago
Selected Answer: B
Answer B) NAC supports validation of the endpoint's security posture prior to allowing the session to go into an authorized state.
upvoted 2 times
...
Soleandheel
11 months, 2 weeks ago
B. NAC supports validation of the endpoint's security posture prior to allowing the session to go into an authorized state. Network Admission Control (NAC) allows organizations to assess and validate the security posture of endpoints (such as computers or devices) before granting them access to the network. It checks for compliance with security policies, up-to-date antivirus software, operating system patches, and other security requirements. Once the endpoint's security posture is verified and meets the criteria set by the organization, it is allowed to enter an authorized state and gain network access.
upvoted 2 times
...
invincible96
1 year, 8 months ago
Selected Answer: B
The benefit of using Network Admission Control (NAC) is that it supports validation of the endpoint's security posture prior to allowing the session to go into an authorized state. This means that devices attempting to access the network can be checked for compliance with security policies, such as up-to-date antivirus software or the presence of required security settings, before being granted access. This can help prevent the spread of malware and other security threats across the network.
upvoted 2 times
...
Dee83
1 year, 10 months ago
B. NAC supports validation of the endpoint's security posture prior to allowing the session to go into an authorized state.
upvoted 2 times
...
Cessar
1 year, 10 months ago
Selected Answer: B
Page 667 CISSP all in one 9th edition
upvoted 2 times
...
oudmaster
1 year, 11 months ago
Selected Answer: C
Excluding A and D. Option B seems not true to me, because NAC does security posture scan before authenticate the machine (not before authorize it). I vote for C.
upvoted 1 times
...
BP_lobster
1 year, 12 months ago
C is included within B, hence B is the better answer. I.e. we can stipulate certificates and passwords as compliance conditions when checking endpoints security posture. From rdy4u below ""Network access control (NAC)", also known as "Network Admission Control", is the process of restricting unauthorized users and devices from gaining access to a corporate or private network. NAC ensures that only users who are authenticated and devices that are authorized and compliant with security policies can enter the network. https://www.fortinet.com/resources/cyberglossary/what-is-network-access-control"
upvoted 2 times
...
254Tech
2 years ago
B: https://www.cisco.com/c/en/us/products/security/what-is-network-access-control-nac.html
upvoted 1 times
...
rdy4u
2 years ago
Selected Answer: B
"Network access control (NAC)", also known as "Network Admission Control", is the process of restricting unauthorized users and devices from gaining access to a corporate or private network. NAC ensures that only users who are authenticated and devices that are authorized and compliant with security policies can enter the network. https://www.fortinet.com/resources/cyberglossary/what-is-network-access-control
upvoted 1 times
...
Humongous1593
2 years, 1 month ago
Selected Answer: B
B includes C and D. NACs can do all of those things. Such as checking for a supported OS. You don't want Win XP/Vista/7 on your network period.
upvoted 2 times
[Removed]
2 years ago
Nah, C is a authentication server, think Microsoft NPS, Cisco ISE, FortiAuthenticator. A NAC is all about ensuring devices meet a base level of compliance before gaining access to the network. Cisco ISE, for example, has RADIUS and TACAC functionality for Certificate/Password based authentication, and it also has a NAC function (requires Advantage/Premier Licensing) which enables it to determine the devices posture, which it can then use as part of its authentication and authorization processes. It's B.
upvoted 1 times
...
...
CuteRabbit168
2 years, 1 month ago
Selected Answer: B
NAC is a generic term for a solution that selectively grants network access to devices based on one or more criteria. Those criteria could be based on authentication (only authorized users are granted access to the network), security posture (only devices with up-to-date operating systems and antivirus software can connect), or any number of other criteria (device manufacturer, employee access level, etc).
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...