CompTIA Security+ (SY0-401) — Question 11
Recently, the desktop support group has been performing a hardware refresh and has replaced numerous computers. An auditor discovered that a number of the new computers did not have the companys antivirus software installed on them. Which of the following could be utilized to notify the network support group when computers without the antivirus software are added to the network?
Answer options
- A. Network port protection
- B. NAC
- C. NIDS
- D. Mac Filtering
Correct answer: C
Explanation
The correct answer is C, as a Network Intrusion Detection System (NIDS) can monitor network traffic for unauthorized devices and alert administrators when computers that do not comply with security policies, such as lacking antivirus software, are detected. Options A (Network port protection) and D (Mac Filtering) do not provide real-time monitoring or alerting for software compliance, while B (NAC) primarily focuses on enforcing security policies rather than actively detecting such software issues.