CompTIA Security+ (SY0-701) — Question 36

An administrator notices that several users are logging in from suspicious IP addresses. After speaking with the users, the administrator determines that the employees were not logging in from those IP addresses and resets the affected users’ passwords. Which of the following should the administrator implement to prevent this type of attack from succeeding in the future?

Answer options

• A. Multifactor authentication
• B. Permissions assignment
• C. Access management
• D. Password complexity

Correct answer: A

Explanation

Implementing multifactor authentication adds an extra layer of security by requiring users to provide additional verification beyond just a password. This makes it significantly harder for unauthorized individuals to gain access, even if they have the password. The other options, while important for security management, do not directly address the issue of unauthorized access from suspicious locations.