CompTIA CASP+ (CAS-004) — Question 611

A company is deploying multiple VPNs to support supplier connections into its extranet applications. The network security standard requires:

• All remote devices to have up-to-date antivirus
• A HIDS
• An up-to-date and patched OS

Which of the following technologies should the company deploy to meet its security objectives? (Choose two.)

Answer options

• A. NAC
• B. WAF
• C. NIDS
• D. Reverse proxy
• E. NGFW
• F. Bastion host

Correct answer: A, E

Explanation

The correct answers are NAC and NGFW. NAC (Network Access Control) ensures that devices meet security requirements before accessing the network, while NGFW (Next-Generation Firewall) provides advanced security features including application awareness and intrusion prevention. The other options do not address the specific requirements of ensuring device compliance and securing network access effectively.