CompTIA Network+ (N10-007) — Question 117

Log files show the admin user has logged into a public-facing device on several occasions in the evening. None of the technicians admit to doing any after-hours work, and the password has been changed several times but failed to prevent the logins. Which of the following should be the NEXT step to attempt to harden the device?

Answer options

• A. Disable unused ports.
• B. Reset the two-factor token.
• C. Disable virtual ports.
• D. Upgrade the firmware.

Correct answer: A

Explanation

Disabling unused ports is a proactive measure to enhance security by preventing unauthorized access through those ports. Resetting the two-factor token, disabling virtual ports, or upgrading the firmware may not directly stop the unauthorized logins if the attacker is already exploiting existing access points.