Guys, I'm going to have an exam tomorrow, I'm very nervous because my professional future depends on this result, but I have faith in God that everything will work out. Thank you all for your help here at ExamTopics.

We are asked for the first line of defense. Not the most versatile, or best combination. What if we had it all, which ones would be the first two. Well we have to stop the adversaries from entering the facility of course. Access control vestibules and guards do this. Then we have the more technical solutions such as Mac filtering or NAC, but as I noted, we need to pick the two which would be our first line of defense.

First line of defense: D & E A,B, & C are second lines of defense Bollards just prevent a vehicle from crashing in. Without them, if someone crashed in, they would be spotted immediately.

The correct answer for the FIRST line of attack SHOULD be D & E, however, if they mean technical controls, then it's B & C. MAC filtering is pretty lame since it can be compromised in seconds.

First line of defense should be even BEFORE reaching the server which will be D and E. A guard and access control.

First Line

D - Access Control Vestibules & E - Guards

My Answer....k.i.s.s

I choose DE because its asking for first line of defense before attacker can jack in a kali linux box, so i dont see why NAC would be necessary if a guard and vestibules are available options

C and D are both physical controls and it is quite possible to perform social engineering so that the guard might let the attacker in. If this is a possibility then there has to be a technical control too which is NAC. So I go with NAC and vestibule

The Question has Key giveaways, (concerned about hackers potentially entering a facility and plugging in a remotely accessible Kali Linux box) They are walking into the facility Physically. The intent is to plug in a Laptop, A cellphone, rasberry pi, or tablet with kali. Then connecting physically. So you would require physical deterrents. Such as guards and Access control Vestibules. Don't overthink it and keep it simple. D and E.

Just passed the exam with a score of 800 on 10/28/23. About 90% of the questions are from here. This question is on the exam.

hackers potentially entering a facility--> think physical entry DE

After pressing GPT and Brad: The answer to the question "An organization is concerned about hackers potentially entering a facility and plugging in a remotely accessible Kali Linux box. Which of the following should be the first lines of defense against such an attack?" would be: C. Network access control and D. Access control vestibules Network Access Control (NAC) is essential because it can prevent unauthorized devices from connecting to the network. It ensures that devices meeting certain security postures are allowed to connect, while others are not. Access Control Vestibules are physical barriers that prevent unauthorized individuals from entering a facility. If a hacker can't physically get into the building, they can't plug in their device. While zero trust segmentation is a good security measure, it primarily helps once an intruder is already on the network. The question's emphasis is on preventing the hacker from physically plugging in a device, making physical security measures like access control vestibules more directly relevant.

DE. Like others have said, the BEST defense is to keep people from getting into the building to begin with. Note the "and" in the question, not "or." The answer WOULD be CD if it said "or"

In the context of physically preventing unauthorized access and the immediate "first line of defense," the more suitable options would be: D. Access control vestibules: These controlled entry points can prevent unauthorized individuals from directly entering the facility, and they provide security checks before granting access. E. Guards: Security personnel can actively monitor entry points, verify identities, and prevent unauthorized devices from being plugged in. While NAC is indeed an important security measure, it might not address the immediate concern of hackers physically gaining access to the facility and plugging in unauthorized devices. The initial defense against this kind of threat usually involves physical security measures like access control vestibules and security personnel.

*On Exam, Taken On July 31, 2023*