CompTIA Cloud+ (CV0-002) — Question 58

A CASB provides the application proxy and web application firewall to a large retailer. All access to the retailer cloud application must originate from the CASB- designated IP addresses. The CASB has known geolocations with known IP addresses. Suddenly, all customers are not able to access the retailer cloud applications. Which of the following is MOST likely the reason for the issue?

Answer options

• A. Additional CASB IP addresses were added to the authorized pool
• B. All of the CASB's European datacenters are down
• C. There was federation and SSO misconfiguration
• D. The CASB's SSL/TLS certificate expired

Correct answer: D

Explanation

The correct answer is D because an expired SSL/TLS certificate would prevent secure connections to the cloud applications, resulting in access issues for customers. The other options suggest scenarios that are less likely to cause a widespread access problem, such as additional IP addresses or datacenter outages, which would not affect all users equally.