CompTIA Security+ (SY0-501) — Question 340

An application team is performing a load-balancing test for a critical application during off-hours and has requested access to the load balancer to review which servers are up without having the administrator on call. The security analyst is hesitant to give the application team full access due to other critical applications running on the load balancer. Which of the following is the BEST solution for security analyst to process the request?

Answer options

• A. Give the application team administrator access during off-hours.
• B. Disable other critical applications before granting the team access.
• C. Give the application team read-only access.
• D. Share the account with the application team.

Correct answer: C

Explanation

The correct answer is C, as granting read-only access allows the application team to view the necessary information without the risk of altering configurations or affecting other critical applications. Options A and B pose significant security risks by either providing too much access or disrupting other services. Option D is also inappropriate as sharing accounts undermines accountability and security best practices.