CompTIA Security+ (SY0-601) — Question 560

A systems administrator wants to add a second factor to the single sign-on portal that the organization uses. Currently, only a username and password are required. Which of the following should the administrator implement to best meet this requirement?

Answer options

• A. Personal verification questions
• B. Software-based TOTP
• C. Log-in image checks
• D. Secondary PIN code

Correct answer: B

Explanation

The correct answer is B, Software-based TOTP, as it provides a time-sensitive one-time password that adds a strong layer of security. The other options, like personal verification questions and log-in image checks, offer less security and can be more easily compromised, while a secondary PIN code may not provide the same level of dynamic authentication as TOTP.