Visitors to a company's facilities are connecting to the company's corporate network Wi-Fi and open network ports. Which of the following should the security engineer implement to prevent this unauthorized access?
NAC should be implemented to prevent unauthorized access to the corporate network.
Network Access Control (NAC) is a security solution that enforces policies regarding who and what can access the corporate network, ensuring that only authorized devices and users are granted access. This solution is crucial in managing risks associated with visitors connecting to a company's Wi-Fi and open network ports.
A Virtual Private Network (VPN) provides a secure connection over the internet, encrypting data between a user's device and the corporate network. However, it does not inherently prevent unauthorized devices from connecting to the network; it merely secures the communication for those already authenticated. Therefore, a VPN alone would not effectively control access for visitors.
WPA3 is a security protocol for wireless networks that enhances encryption and protects against unauthorized access. While it improves the security of Wi-Fi networks, it does not manage or restrict access based on user identity or device compliance, which is crucial in a corporate environment with visitors. Thus, it is insufficient for preventing unauthorized network access.
NAC solutions enforce security policies by controlling which devices can connect to the network based on predefined criteria such as user authentication and device compliance checks. By implementing NAC, the company can ensure that only authorized users and compliant devices can access the network, effectively mitigating risks associated with unauthorized access by visitors.
Host Intrusion Detection Systems (HIDS) monitor and analyze the activity on devices for signs of unauthorized access or malicious behavior. While valuable for detecting breaches, HIDS do not prevent unauthorized access at the network entry point, making them less effective in addressing the immediate issue of visitors connecting to the corporate network.
To effectively prevent unauthorized access to a corporate network by visitors, implementing NAC is essential. This technology enforces security policies that control access based on user identity and device compliance, thereby safeguarding the network against potential risks while allowing legitimate access. Other options, while important for network security, do not directly address the issue of controlling who can access the network.
Related Questions
View allWhich of the best reason to perform a tabletop exercise?
Which of the following techniques would attract the attention of a mal...
A security engineer would like to enhance the use of automation and or...
An important patch for a critical application has just been released,...
Which of the following is a type of vulnerability for which no patch c...
Related Quizzes
View allCompTIA A Plus Certification Exam
CompTIA A Plus Exam Questions
CompTIA A Plus 1001 Exams Practice
CompTIA A Plus Practice Exam
CompTIA CySA+ Cybersecurity Analyst Certification all in One Exam Guide
CompTIA Network Plus Certification Exam Quiz
CompTIA Security Plus Exam Answers
Free CompTIA Security Plus Practice Test
CompTIA Security Plus Simulation Questions
CompTIA Security Plus Example Questions
- ✓ 500+ Practice Questions
- ✓ Detailed Explanations
- ✓ Progress Analytics
- ✓ Exam Simulations