Your company requires remote system administrators to authenticate using a method more secure than passwords alone when accessing critical Linux servers. Which of the following options provides an additional layer of security that requires something the user has, in addition to something the user knows?
You selected this option
Using a one-time password (OTP) token in conjunction with their user password
You selected this option
Employing biometric authentication such as fingerprint or facial recognition
You selected this option
Implementing a strict password strength and rotation policy
You selected this option
Requiring administrators to connect using SSH keys
Using a one-time password (OTP) token alongside the regular password constitutes two-factor authentication (2FA), which is a subset of MFA. The OTP token is a physical device or software application that generates a time-limited code, adding an additional security layer beyond the password, which is 'something the user knows'. The token ensures 'something the user has', thereby satisfying MFA requirements. Biometric authentication, while it also provides an additional security layer, is categorized as 'something the user is', and it is generally not used in conjunction with a password as the sole two factors in remote system administration. Password strength policies improve the security of the password itself but do not add another factor. SSH keys are a secure method of authentication but are considered a single factor: 'something the user has'.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is two-factor authentication (2FA)?
Open an interactive chat with Bash
How do one-time password (OTP) tokens work?
Open an interactive chat with Bash
What is multi-factor authentication (MFA) and how does it relate to 2FA?