Free CompTIA Security+ SY0-701 Practice Question

A corporation employs external auditors who require access to the company's server infrastructure for a limited duration. The security policy enforces minimum necessary privileges and mandates that access credentials should expire immediately after the auditing task is completed. Which of the following practices should be implemented to comply with the security policy?

  • Creating permanent accounts with privileged access for each auditor

  • Issuing a set of shared credentials that the audit team can use

  • Allocating time-restricted access tokens for server access

  • Generating non-expiring API keys for auditors to use during their review

This question's topic:
CompTIA Security+ SY0-701 / 
Security Operations
Your Score:

Check or uncheck an objective to set which questions you will receive.