CompTIA CASP+ Practice Test

What technical control can prevent employees from improperly accessing company resources remotely?

• A. Implementing a centralized logging system.
• B. Installing additional antivirus software on all devices.
• C. Enforcing policies that restrict remote server configuration.
• D. Implementing strict password policies.

The correct answer is: Enforcing policies that restrict remote server configuration.

The implementation of policies that restrict remote server configuration is a crucial technical control to prevent employees from improperly accessing company resources from outside the organization. By enforcing strict configurations on remote servers, organizations can limit the ports, services, and protocols that can be used, thereby minimizing the attack surface available to remote users. This approach can include limiting user permissions, disabling unused services, and ensuring that critical settings comply with best practice guidelines. Such policy enforcement is vital for establishing a secure access framework that governs how remote devices interact with company resources. It can help mitigate the risk of unauthorized access by ensuring that only properly authenticated and authorized users have access to specific resources or functionalities of remote servers. This is particularly important as remote access, if not managed properly, can lead to vulnerabilities and potential data breaches. In contrast, focusing solely on implementing centralized logging systems, installing antivirus software, or enforcing strict password policies, while beneficial, does not directly address the configurations and access controls for remote server management that are essential to effectively limiting improper access. Centralized logging primarily aids in monitoring and auditing, antivirus software is mainly about malware protection, and password policies, although critical for authentication, do not inherently restrict how remote servers are configured or accessed.