ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam N10-007 All Questions

View all questions & answers for the N10-007 exam
Go to Exam

Exam N10-007 topic 1 question 396 discussion

Actual exam question from CompTIA's N10-007
Question #: 396
Topic #: 1
[All N10-007 Questions]

Log files show the admin user has logged into a public-facing device on several occasions in the evening. None of the technicians admit to doing any after-hours work, and the password has been changed several times but failed to prevent the logins. Which of the following should be the NEXT step to attempt to harden the device?

  • A. Disable unused ports.
  • B. Reset the two-factor token.
  • C. Disable virtual ports.
  • D. Upgrade the firmware.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Poppins at May 28, 2020, 4:31 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
YouDipEE
Highly Voted 4 years, 6 months ago
Resetting the two factor token will back to default, so not a good choice. The best option is to upgrade the firmware
upvoted 7 times
...
jeroenptrs93
Highly Voted 4 years, 7 months ago
"public facing device", so one would think it would be accessible over the internet. Yet disabling unused ports is the answer? some of these questions are so confusing
upvoted 6 times
...
jobba111
Most Recent 3 years, 2 months ago
keyword here is "harden the device" falls under firmware upgrade / patch update.
upvoted 1 times
...
Callas
3 years, 6 months ago
I think B might be the answer here. Because the hacker may have the 2FA device, which is how they keep getting in despite the password changes.
upvoted 1 times
...
LeadBasedPaint
3 years, 7 months ago
I’m unsure as to what is the correct answer.
upvoted 1 times
...
Ozhsv
4 years, 1 month ago
So the answer is assuming none of the admins log in to the device so is suggesting disable the ports used to login?
upvoted 2 times
...
KLT316
4 years, 6 months ago
If your own technicians need to get access to this device, then disabling ports doesn't seem to be the best choice... if there was some indication of a "vulnerability", then I'd say D:upgrade firmware, but no mention of that... the Q also says the password has been changed several times already, which seems to TRY to eliminate B, however the Q doesn't mention using 2-factor authentication, just a password. However, I think B is the only logical answer as the Q is written. Keep in mind, exam dumps are mostly created by test takers' "memory". So the questions are most likely not exact, nor are the answers always correct. Use them for what they are, do not memorize answers, verify and research what you don't know and you'll do great on the exam!
upvoted 6 times
Semper_Fortis
4 years, 6 months ago
I would agree with you except that every time I try to look up "two-factor token" the explanation evolves into "2FA" - two factor authentication. I believe that's as simple as user name and password. The question seems to imply that the user name on the admin account is "admin", that's why they have to ask each technician and rely on the truthfulness of their answer. Rather than "reset" the two-factor "token" they should redesign their login to have each technician have their own, individual login which should enable tracking through the logs... or is that not possible?
upvoted 1 times
...
...
[Removed]
4 years, 9 months ago
why disable unused port? Which port? some 2FA can lock who is the admin user
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago