CompTIA CASP+ (CAS-003) — Question 36

An engineer maintains a corporate-owned mobility infrastructure, and the organization requires that all web browsing using corporate-owned resources be monitored. Which of the following would allow the organization to meet its requirement? (Choose two.)

Answer options

• A. Exempt mobile devices from the requirement, as this will lead to privacy violations
• B. Configure the devices to use an always-on IPSec VPN
• C. Configure all management traffic to be tunneled into the enterprise via TLS
• D. Implement a VDI solution and deploy supporting client apps to devices
• E. Restrict application permissions to establish only HTTPS connections outside of the enterprise boundary

Correct answer: B, E

Explanation

The correct options B and E ensure that web traffic is secured and monitored. Option B implements an always-on IPSec VPN, which encrypts data for secure monitoring, while option E restricts applications to HTTPS, preventing unmonitored traffic. Option A is incorrect as it suggests avoiding the requirement, which does not meet the monitoring needs; option C does not specifically address web browsing; option D, while useful, does not directly monitor web activity.