CompTIA Security Plus Mock Test Q906

A technician is reviewing the logical access control method an organization uses. One of the senior managers requests that the technician prevent staff members from logging on during nonworking days. Which of the following should the technician implement to meet managements request?

A. Enforce Kerberos
B. Deploy smart cards
C. Time of day restrictions
D. Access control lists


Correct Answer: C
Section: Access Control and Identity Management

Explanation
Explanation/Reference:
Time of day restrictions limit when users can access specific systems based on the time of day or week. It can limit access to sensitive environments to normal business hours.

Incorrect Answers:
A: Kerberos makes use of encryption keys as tickets with time stamps to prove identity and grant access to resources. It will not prevent staff members from logging on during
nonworking days.
B: Smart cards are credit-card-sized IDs, badges, or security passes with an embedded integrated circuit chip that allows you to physically access secure facilities. It will not prevent
staff members from logging on during nonworking days.
D: Access Control List (ACL) specifies which users are allowed or refused the different types of available access based on the object type. It will not prevent staff members from
logging on during nonworking days.

References:
Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp. 24, 271, 280, 282