CompTIA Security+ (SY0-501) — Question 387

A security administrator is creating a risk assessment with regard to how to harden internal communications in transit between servers.
Which of the following should the administrator recommend in the report?

Answer options

• A. Configure IPSec in transport mode.
• B. Configure server-based PKI certificates.
• C. Configure the GRE tunnel.
• D. Configure a site-to-site tunnel.

Correct answer: B

Explanation

The correct answer is B because server-based PKI certificates provide a robust method for ensuring secure communications through authentication and encryption. Options A, C, and D do not focus specifically on the use of certificates for securing internal communications, which is crucial for the scenario described.