CompTIA Security+ (SY0-601) — Question 813

A company currently uses passwords for logging in to company-owned devices and wants to add a second authentication factor. Per corporate policy, users are not allowed to have smartphones at their desks. Which of the following would meet these requirements?

Answer options

• A. Smart card
• B. PIN code
• C. Knowledge-based question
• D. Secret key

Correct answer: A

Explanation

A smart card can serve as a physical authentication factor, making it suitable for the requirement of a second factor without needing a smartphone. The other options, such as a PIN code and knowledge-based questions, do not provide a second factor as they are both something the user knows, not something they have.