CompTIA Security+ (SY0-701) — Question 171

After a recent vulnerability scan, a security engineer needs to harden the routers within the corporate network. Which of the following is the most appropriate to disable?

Answer options

• A. Console access
• B. Routing protocols
• C. VLANs
• D. Web-based administration

Correct answer: D

Explanation

Disabling web-based administration is crucial because it reduces the attack surface by eliminating a potential entry point for unauthorized access. Console access, routing protocols, and VLANs serve important functions in network management and segmentation, making them less suitable options to disable in the context of hardening security.