CompTIA CASP+ (CAS-004) — Question 612

A consultant needs access to a customer's cloud environment. The customer wants to enforce the following engagement requirements:

• All customer data must remain under the control of the customer at all times.
• Third-party access to the customer environment must be controlled by the customer.
• Authentication credentials and access control must be under the customer's control.

Which of the following should the consultant do to ensure all customer requirements are satisfied when accessing the cloud environment?

Answer options

• A. Use the customer's SSO with read-only credentials and share data using the customer's provisioned secure network storage.
• B. Use the customer-provided VDI solution to perform work on the customer's environment.
• C. Provide code snippets to the customer and have the customer run code and securely deliver its output.
• D. Request API credentials from the customer and only use API calls to access the customer's environment.

Correct answer: B

Explanation

The correct answer is B because using the customer-provided VDI solution allows the consultant to work directly within the customer's controlled environment, ensuring compliance with all access and data control requirements. Options A, C, and D involve varying degrees of third-party access or reliance on shared credentials, which do not meet the customer's strict conditions for data and access control.