CompTIA CASP+ Practice Test

What should the security administrator do before applying ACLs to block file sharing services across the organization?

• A. Analyze the impact on internal communication
• B. Test ACLs on a small segment of the network
• C. Notify all users about the access change
• D. Conduct a risk assessment of file sharing

The correct answer is: Analyze the impact on internal communication

Before applying access control lists (ACLs) to block file sharing services across the organization, the security administrator should analyze the impact on internal communication. This step is crucial because blocking file sharing services can significantly affect how departments collaborate and share information. Understanding existing communication patterns and dependencies on file sharing services helps ensure that vital functions are not disrupted. Analyzing this impact allows the administrator to make informed decisions about which services to restrict and strategize on alternatives that may be required for essential communications. While testing ACLs on a small segment of the network is important for validation purposes, it does not take into account the broader implications on communication across the organization. Notifying users about access changes is necessary for transparency and can help mitigate confusion, but it does not address the potential operational impacts caused by those changes. Lastly, conducting a risk assessment of file sharing is valuable for understanding potential vulnerabilities, but it does not directly relate to the immediate implications of blocking these services on internal communications. Therefore, analyzing the impact provides a holistic view that supports effective decision-making.