CompTIA Security+ (SY0-601) — Question 521

The local administrator account for a company’s VPN appliance was unexpectedly used to log in to the remote management interface. Which of the following would have prevented this from happening?

Answer options

• A. Using least privilege
• B. Changing the default password
• C. Assigning individual user IDs
• D. Implementing multifactor authentication

Correct answer: B

Explanation

Changing the default password is essential because it prevents unauthorized access using the standard credentials that may be known or easily guessed. While least privilege, individual user IDs, and multifactor authentication are important security measures, they do not directly address the issue of a default password being exploited.