ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam PT0-002 All Questions

View all questions & answers for the PT0-002 exam
Go to Exam

Exam PT0-002 topic 1 question 391 discussion

Actual exam question from CompTIA's PT0-002
Question #: 391
Topic #: 1
[All PT0-002 Questions]

During an assessment, a penetration tester was able to get access on all target servers by attempting authentication using a service account key that was published on the intranet site as part of a standard procedure. Which of the following should the penetration tester recommend for this type of finding?

  • A. Password encryption
  • B. Role-based access control
  • C. Secrets management solution
  • D. Time-of-day restrictions
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by BlackSkullz at Nov. 17, 2024, 4:26 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
BlackSkullz
5 months, 3 weeks ago
Selected Answer: C
C. Secrets management solution, as it would ensure safe storage of the password where only authorized users can access it The problem with the other options: Password encryption- The password is still susceptible to being used if said encryption was broken Role-based access control- Wouldn't really be useful since the password is for a service account that would most likely have access to the servers in a role-based access control Time-of-day restrictions- Also not useful, as it doesn't address the problem at hand and it would still be accessible during business hours
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago