CompTIA Network+ (N10-007) — Question 338

A technician wants to prevent an unauthorized host from connecting to the network via Ethernet. Which of the following is a Layer 2 access control the technician should implement?

Answer options

• A. Access control lists
• B. Captive portal
• C. WPA2
• D. Port security

Correct answer: D

Explanation

Port security is specifically designed for Layer 2 of the OSI model and helps to restrict access to a network switch by limiting the number of MAC addresses on a port. Access control lists and captive portals operate at higher layers, while WPA2 is a security protocol for wireless networks, making them unsuitable for this specific Layer 2 requirement.