A network engineer configures network ports in a public office. To increase security, the engineer wants the ports to allow network connections only after authentication. Which of the following security features should the engineer enable?

Port security primarily limits the number of MAC addresses that can be learned on a switch port, effectively preventing unauthorized devices from connecting. However, it does not require authentication of users before they are allowed network access, making it less effective for the desired purpose of ensuring secure connections through user verification.

MAC filtering allows or denies network access based on the MAC addresses of devices. While it can restrict which devices can connect, it does not provide user authentication and can be easily spoofed, making it a less secure option for ensuring that only authenticated users access the network.

Access control lists (ACLs) are used to define permissions for network traffic, controlling which packets are allowed or denied. Although they enhance security, ACLs do not perform user authentication; instead, they operate based on pre-defined rules for traffic flow, making them insufficient for the specific requirement of authenticating users before granting access.