CompTIA CASP+ Practice Test

What control would best protect a corporate network when sales staff connect laptops to client networks?

• A. Implement strong passwords for all devices
• B. Require endpoint protection software
• C. Implement a network access control (NAC) solution
• D. Limit access during client visits

The correct answer is: Implement a network access control (NAC) solution

Implementing a network access control (NAC) solution is the most effective measure to protect a corporate network when sales staff connect laptops to client networks. NAC solutions provide a way to enforce security policies on devices attempting to access the network. This ensures that any device connecting to the network complies with established security standards, such as having updated antivirus software, correct patches installed, and necessary configurations set. With NAC, organizations can segment the network, allowing only compliant devices to access sensitive areas. It can also restrict the access level based on the user’s role and the device’s security posture, dramatically reducing the potential for security breaches caused by insecure laptops connecting to a client’s network. Furthermore, NAC solutions can quarantine or block devices that do not meet security compliance, providing an additional layer of protection. In contrast, strong passwords enhance device security but do not specifically address the risks associated with connecting to external networks. While requiring endpoint protection software is valuable for protecting devices from threats, it does not enforce access policies or manage network connections as effectively as a NAC solution. Limiting access during client visits might reduce exposure but does not provide the real-time monitoring and compliance enforcement that NAC offers. Therefore, the most comprehensive approach to securing the corporate network is by implementing a network access