Best Access Technology for Separate Access Control Functionalities | CompTIA Security+ Exam Answer
Question
Joe, a security administrator, needs to extend the organization's remote access functionality to be used by staff while travelling.
Joe needs to maintain separate access control functionalities for internal, external, and VOIP services.
Which of the following represents the BEST access technology for Joe to use?
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D.B.
Of the four options provided, the BEST access technology for Joe to use to extend remote access functionality for staff traveling while maintaining separate access control functionalities for internal, external, and VOIP services would be RADIUS.
Remote Authentication Dial-In User Service (RADIUS) is a networking protocol used to provide centralized authentication, authorization, and accounting (AAA) management for users who connect and use a network service. It is widely used by Internet service providers (ISPs) and enterprise networks to manage access to the internet or internal networks, such as virtual private networks ( VPNs), wireless networks, and dial-up connections.
RADIUS servers use a central database to store user authentication information such as usernames, passwords, and access rights. When a user attempts to access a network service, their credentials are sent to the RADIUS server, which checks them against the central database. If the credentials are valid, the server sends an access accept message to the network access server (NAS), which grants access to the user.
RADIUS is a good choice for Joe because it supports a wide range of authentication methods, including passwords, digital certificates, and smart cards. It also supports different types of network access servers, including VPN gateways, wireless access points, and dial-up servers.
In contrast, TACACS+ (Terminal Access Controller Access Control System) is a Cisco proprietary protocol that provides AAA services for routers, switches, and other network devices. It is often used in large enterprise networks and is typically not used for remote access or VPNs. Diameter is a newer AAA protocol that is used in some mobile networks and is not commonly used for enterprise networks. Kerberos is a network authentication protocol that is commonly used in Microsoft Windows environments, but it is not designed for remote access or VPNs.
In summary, RADIUS is the BEST access technology for Joe to use to extend remote access functionality for staff traveling while maintaining separate access control functionalities for internal, external, and VOIP services.
