An enterprise wants to limit remote sign-ins to an approved zone and prompt for an additional action when a user tries connecting from outside that zone. Which measure aligns best with this requirement?
Have users manually declare their location at sign-in
Implement a rule that compares each sign-in attempt against an auto-updating IP registry and requires an extra challenge for unrecognized entries
Block all remote connections after designated work hours in the intended zone
Prompt the user’s mobile device to report its GPS coordinates before allowing access
Using a regularly updated IP reference for territorial rules identifies whether a sign-in originates from an approved zone. Implementing a dynamically updated IP rule that triggers extra verification outside approved regions is more robust than manual location input, time-only checks, or relying on a phone’s reported coordinates. The others are less reliable or do not specifically enforce authentication controls based on a user’s sign-in origin.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is an auto-updating IP registry?
Open an interactive chat with Bash
How does IP-based authentication work?
Open an interactive chat with Bash
Why is IP-based authentication better than manual location input?