CompTIA A+ Core 1 (220-1101) — Question 467

A company recently enabled two-factor authentication in order to enhance security. Users should be prompted for two-factor authentication when working outside of the office, but are also being prompted when connecting to the office Wi-Fi. Which of the following should the technician do?

Answer options

• A. Leave the current rules in place and disable Wi-Fi on all devices.
• B. Implement allow listing and add the office IP address as an exception.
• C. Remove two-factor authentication from the users’ accounts.
• D. Substitute hard tokens in place of soft tokens.

Correct answer: B

Explanation

The correct answer is B because implementing allow listing allows trusted IP addresses, such as the office's, to bypass two-factor authentication, thus reducing unnecessary prompts. Option A is impractical as it disables Wi-Fi, while option C completely removes the security measure of two-factor authentication. Option D does not address the issue of unnecessary prompts when connecting to the office Wi-Fi.