A security administrator determined that users within the company are installing unapproved software.
Company policy dictates that only certain applications may be installed or ran on the user's computers without exception.
Which of the following should the administrator do to prevent all unapproved software from running on the user's computer?
Click on the arrows to vote for the correct answer
A. B. C. D.C.
The best solution to prevent all unapproved software from running on the user's computer is to create an application whitelist and use OS controls to enforce it. This is option C.
Option A, deploying antivirus software and configuring it to detect and remove pirated software, is not the best solution as antivirus software may not detect all unapproved software, and it is possible that some legitimate software may be flagged as pirated.
Option B, configuring the firewall to prevent the downloading of executable files, will not prevent the installation of software that is already present on the computer, and it will also prevent users from downloading legitimate files, such as software updates or patches.
Option D, preventing users from running as administrator so they cannot install software, will limit users' abilities to install software, but it may not prevent all unapproved software from running. Some software may be able to run without administrator privileges, and some users may find workarounds to gain administrative privileges.
Creating an application whitelist involves identifying the approved applications and creating a list of them. Once the list is created, the administrator can configure the OS controls to only allow the approved applications to run, and prevent any unapproved applications from executing. This ensures that only approved software is running on the user's computer and provides a higher level of security.
Overall, option C is the most effective solution as it provides a higher level of control over the software that is allowed to run on the user's computer.