23 Feb Practice Test Question- Network Access Control
Preparing for your next security certification exam? After trying your hand at this practice test question, join the FREE CertMike Study Group for the CISSP, Security+, CySA+, PenTest+, CISM+ or SSCP certification to receive new questions each week. You’ll also receive free access to my customized study strategies.
Tina is implementing a network access control solution for an open guest network. She would like to use an approach that does not require installing software on systems joining the network but can limit them to a quarantine network until they successfully pass a health check. What NAC solution would best meet her needs?
B. Captive Portal
D. Out of Band
Correct Answer: B
Captive portals are websites where unvalidated systems are redirected until they complete the admission process. Which makes this an inline approach, meaning that the captive portal is the best solution for Tina. The use of an out-of-band, or agent-based approach would require the installation of software on the device, violating one of the requirements. Post-admission NAC would allow the system on the network and only block it if it exhibited suspicious behavior, not meeting the basic requirement of the scenario.