CompTIA Network+ (N10-009) — Question 233

Which of the following are the best device-hardening techniques for network security? (Choose two.)

Answer options

• A. Disabling unused ports
• B. Performing regular scanning of unauthorized devices
• C. Monitoring system logs for irregularities
• D. Enabling logical security such as SSO
• E. Changing default passwords
• F. Ensuring least privilege concepts are in place

Correct answer: A, E

Explanation

Disabling unused ports (A) reduces potential attack vectors, while changing default passwords (E) minimizes the risk of unauthorized access. The other options, while important for security, do not directly correspond to device hardening techniques.