Implementing Secure Solutions with Virtual Private Networks (SVPN) — Question 54

A company needs to ensure only corporate issued laptops and devices are allowed to connect with the Cisco AnyConnect client. The solution should be applicable to multiple operating systems, including Windows, MacOS, and Linux, and should allow for remote remediation if a corporate issued device is stolen. Which solution should be used to accomplish these goals?

Answer options

• A. Use a DAP registry check on the system to determine the relationship with the corporate domain.
• B. Use a DAP file check on the system to determine the relationship with the corporate domain.
• C. Install and authenticate user certificates on the corporate devices.
• D. Install and authenticate machine certificates on the corporate devices

Correct answer: D

Explanation

The correct answer is D, as installing and authenticating machine certificates on corporate devices ensures that only authorized devices can connect to the network. Options A and B focus on DAP checks, which do not provide the same level of security and control as machine certificates. Option C concerns user certificates, which do not restrict device access effectively.