ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam SY0-601 All Questions

View all questions & answers for the SY0-601 exam
Go to Exam

Exam SY0-601 topic 1 question 759 discussion

Actual exam question from CompTIA's SY0-601
Question #: 759
Topic #: 1
[All SY0-601 Questions]

A company has had several malware incidents that have been traced back to users accessing personal SaaS applications on the internet from the company network. The company has a policy that states users can only access business-related cloud applications from within the company network. Which of the following technical solutions should be used to enforce the policy?

  • A. Implement single sign-on using an identity provider
  • B. Leverage a cloud access security broker.
  • C. Configure cloud security groups
  • D. Install a virtual private cloud endpoint
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by [deleted] at Jan. 15, 2024, 8:48 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
NetworkTester1235
Highly Voted 1 year, 3 months ago
When in doubt, it's CASB
upvoted 8 times
...
ha_ha
Highly Voted 1 year, 5 months ago
B. Leverage a cloud access security broker (CASB). A CASB can help monitor and enforce security policies for cloud applications, including restricting access to only authorized and business-related applications. It provides visibility into user activities and helps prevent unauthorized access to personal SaaS applications from the company network.
upvoted 6 times
...
salah112
Most Recent 1 year, 4 months ago
Selected Answer: B
B. Leverage a cloud access security broker. To enforce the policy of restricting users to accessing only business-related cloud applications from within the company network, a Cloud Access Security Broker (CASB) should be leveraged. A CASB is a security solution that helps organizations monitor and control the use of cloud services, including Software as a Service (SaaS) applications.
upvoted 2 times
...
johnabayot
1 year, 5 months ago
Selected Answer: B
B : Leverage a cloud access security broker. It can monitor and control the cloud apps that users access, and apply security policies to prevent unauthorize or risky activities. A CASB can also block unsactioned apps by integrating with Microsoft Defender for Endpoint.
upvoted 4 times
...
LuckyAro
1 year, 5 months ago
VDI (Virtual Desktop Interface) could solve this issue quite easily
upvoted 2 times
...
[Removed]
1 year, 5 months ago
Selected Answer: D
D. i don't want to confuse people so let me explain my thought process. a. emplementing a single sign on would not stop someone from connecting to a resource because they would just enter a password and user to login b. the question says cloud access security broker, with this one they're trying to confuse you CASB is could for managing cloud services however the question states that "users accessing PERSONAL SaaS applications. this means that the company cant apply permisions to the SaaS service because it's the users personal SaaS. right now I'm stuck in-between c and d.
upvoted 2 times
david124
1 year, 5 months ago
Dude, CASB monitors and ENFORCES company policy. They don't need to apply on policy on the SaaS, they just need to not allow the employee to access their personal SaaS from the company network. You're very wrong on the one bud
upvoted 3 times
...
toluwalase022
1 year, 5 months ago
It's always annoying when you give wrong answers and then back it up with English, are we supposed to say "AHH he writes good English so yea this is the right answer "?.. CASB is the right answer period......
upvoted 3 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel