A cloud admin receives a call from someone claiming to be from official support, requesting top-level login details to address an urgent service issue. Which approach helps prevent credential misuse if the admin mistakenly provides the password?
Set up encryption for data stored on the server
Enforce password rotations every two months
Configure multi-factor authentication for privileged accounts
Deploy an additional firewall layer for inbound traffic
Multi-factor authentication (MFA) involves an extra factor in addition to a secret. Even if someone collects the secret by phone, they cannot proceed without the additional proof of identity. Other measures do not address the specific risk of a stolen password being misused through a phone-based attempt.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is multi-factor authentication (MFA)?
Open an interactive chat with Bash
How does MFA prevent credential misuse?
Open an interactive chat with Bash
Are there different types of MFA? If so, what are they?