CompTIA Security+ (SY0-401) — Question 7

A security administrator needs an external vendor to correct an urgent issue with an organizations physical access control system (PACS). The PACS does not currently have internet access because it is running a legacy operation system. Which of the following methods should the security administrator select the best balances security and efficiency?

Answer options

• A. Temporarily permit outbound internet access for the pacs so desktop sharing can be set up
• B. Have the external vendor come onsite and provide access to the PACS directly
• C. Set up VPN concentrator for the vendor and restrict access to the PACS using desktop sharing
• D. Set up a web conference on the administrator’s pc; then remotely connect to the pacs

Correct answer: C

Explanation

Option C is correct because it allows secure remote access through a VPN concentrator while restricting the vendor's access to only what is necessary for desktop sharing. Option A poses a significant security risk by temporarily allowing internet access to the PACS. Option B, while potentially effective, does not maximize efficiency as it requires the vendor to be onsite. Option D also lacks the necessary security controls for accessing the PACS remotely.