CompTIA Security+ (SY0-501) — Question 982

A security administrator determined that users within the company are installing unapproved software. Company policy dictates that only certain applications may be installed or ran on the user's computers without exception.
Which of the following should the administrator do to prevent all unapproved software from running on the user's computer?

Answer options

• A. Deploy antivirus software and configure it to detect and remove pirated software
• B. Configure the firewall to prevent the downloading of executable files
• C. Create an application whitelist and use OS controls to enforce it
• D. Prevent users from running as administrator so they cannot install software.

Correct answer: C

Explanation

The correct answer is C because creating an application whitelist allows only approved software to run on users' computers, effectively preventing unauthorized installations. Option A focuses on detecting pirated software rather than preventing all unapproved applications. Option B only restricts downloads of executables but does not stop software that is already installed. Option D limits user privileges but does not actively enforce a policy against unapproved software.