CompTIA CySA+ (CS0-002) — Question 131

A new on-premises application server was recently installed on the network. Remote access to the server was enabled for vendor support on required ports, but recent security reports show large amounts of data are being sent to various unauthorized networks through those ports. Which of the following configuration changes must be implemented to resolve this security issue while still allowing remote vendor access?

Answer options

• A. Apply a firewall application server rule.
• B. Add the application server to the allow list.
• C. Sandbox the application server.
• D. Enable port security.
• E. Block the unauthorized networks.

Correct answer: A

Explanation

Applying a firewall application server rule is the correct choice as it allows for controlled access while blocking unauthorized data transmissions. Adding the server to an allow list may not prevent unauthorized data flow, while sandboxing could limit the functionality required by the vendor. Enabling port security and blocking unauthorized networks may not directly address the remote access requirement.