CompTIA CySA+ (CS0-001) — Question 6
Company A permits visiting business partners from Company B to utilize Ethernet ports available in Company A's conference rooms. This access is provided to allow partners the ability to establish VPNs back to Company B's network. The security architect for Company A wants to ensure partners from Company B are able to gain direct Internet access from available ports only, while Company A employees can gain access to the Company A internal network from those same ports. Which of the following can be employed to allow this?
Answer options
- A. ACL
- B. SIEM
- C. MAC
- D. NAC
- E. SAML
Correct answer: D
Explanation
The correct answer is NAC (Network Access Control) as it can enforce policies that restrict access for partners to only the Internet while allowing employees broader access to the internal network. ACLs (Access Control Lists) could control traffic but not at the level of differentiating user access based on roles. SIEM, MAC, and SAML are not applicable for this specific access control scenario.