CompTIA Cloud+ (CV0-003) — Question 284

A cloud security engineer needs to ensure authentication to the cloud provider console is secure. Which of the following would BEST achieve this objective?

Answer options

• A. Require the user's source IP to be an RFC1918 address
• B. Require the password to contain uppercase letters, lowercase letters, numbers, and symbols
• C. Require the use of a password and a physical token.
• D. Require the password to be ten characters long

Correct answer: C

Explanation

The correct answer, C, is effective because it combines something the user knows (the password) with something the user has (the physical token), enhancing security through two-factor authentication. Options A, B, and D do not provide the same level of security since they rely solely on password complexity or IP restrictions, which can be less secure against various attacks.