CompTIA Network+ (N10-007) — Question 100

A development team has been testing a web server on a virtual server to create a web application. Once satisfied, the development team clones the entire virtual server into production. The development team needs to use HTTP, HTTPS, and SSH to connect to the new server. Which of the following should the network administrator do to help secure this new production VM? (Choose two.)

Answer options

• A. Disable the HTTP port in the host firewall.
• B. Upgrade the firmware on the firewall.
• C. Generate new SSH host keys.
• D. Remove unnecessary testing accounts.
• E. Issue a new self-signed certificate.

Correct answer: C, E

Explanation

Generating new SSH host keys (C) ensures that the connections to the server are secure and that any previous keys from the testing environment are not reused. Issuing a new self-signed certificate (E) is essential to secure HTTPS connections and ensure that users connect to the correct server. The other options either do not directly enhance security or are not relevant to the specific needs of the production environment.