CompTIA Security+ (SY0-501) — Question 198

An organization hosts a public-facing website that contains a login page for users who are registered and authorized to access a secure, non-public section of the site. That non-public site hosts information that requires multifactor authentication for access. Which of the following access management approaches would be the BEST practice for the organization?

Answer options

• A. Username/password with TOTP
• B. Username/password with pattern matching
• C. Username/password with a PIN
• D. Username/password with a CAPTCHA

Correct answer: D

Explanation

The best practice for access management in this scenario is to implement Username/password with TOTP (A), as it provides an additional layer of security through time-based one-time passwords. The other options, such as pattern matching (B), a PIN (C), and CAPTCHA (D), do not offer the same level of multifactor authentication required for securing sensitive information.