CompTIA Security+ (SY0-601) — Question 376

A network manager wants to protect the company's VPN by multifactor authentication that uses:

• Something you know
• Something you have
• Somewhere you are

Which of the following would accomplish the manager's goal?

Answer options

• A. Domain name. PKI, GeoIP lookup
• B. VPN IP address, company ID. partner site
• C. Password, authentication token, thumbprint
• D. Company URL, TLS certificate, home address

Correct answer: C

Explanation

The correct answer is C, as it includes a password (something you know), an authentication token (something you have), and a thumbprint (something you are). The other options do not effectively incorporate the three required factors for multifactor authentication. For instance, option A uses a domain name and PKI, which do not align with the three categories.