CompTIA Security+ (SY0-701) — Question 146

The local administrator account for a company's VPN appliance was unexpectedly used to log in to the remote management interface. Which of the following would have most likely prevented this from happening?

Answer options

• A. Using least privilege
• B. Changing the default password
• C. Assigning individual user IDs
• D. Reviewing logs more frequently

Correct answer: B

Explanation

Changing the default password would have prevented unauthorized access since default credentials are often well-known and can be easily exploited. While using least privilege, assigning individual user IDs, and reviewing logs more frequently are good security practices, they do not directly address the risk posed by unchanged default passwords.