Restricted Access to On-Premises Physical Server

A.

The correct solution that meets the requirement of restricting access to an on-premises physical server for authorized users only and preventing it from being connected to the Internet is to "Air gap the server".

Air gapping refers to the practice of physically isolating a computer or network from other networks or the Internet. By implementing an air gap, the server is completely disconnected from any external networks, making it inaccessible to anyone outside the local area network (LAN). This approach ensures the highest level of security since it eliminates the possibility of unauthorized access over the network or the Internet.

In contrast, the other options presented in the question do not address the requirement of restricting access to an on-premises physical server, and they are not applicable to the scenario.

Establishing a hosted SSO (Single Sign-On) or implementing a CAS (Central Authentication Service) are both identity and access management solutions that allow users to access multiple applications with a single set of credentials. However, they do not prevent the server from being connected to the Internet, and they do not restrict access to an on-premises physical server.

Virtualizing the server is a technique that allows multiple virtual servers to run on a single physical server, making it more efficient and cost-effective. However, virtualizing a server does not address the requirement of restricting access to an on-premises physical server, and it does not prevent the server from being connected to the Internet.

Therefore, the correct solution to meet the requirement of restricting access to an on-premises physical server for authorized users only and preventing it from being connected to the Internet is to air gap the server.