Q: 9
Which of the following management process allows ONLY those services required for users to
accomplish
their tasks, change default user passwords, and set servers to retrieve antivirus updates?
Options
Discussion
A
Maybe D . Patch management can sometimes include disabling services and forcing AV updates too, so A feels like a trap.
Option D. since patching also handles updates and sometimes disables services by default. A is a trap here.
Pretty sure A: is what I picked. Had a similar scenario in my exam last year, config mgmt covered disabling services and default password changes. Changing ongoing user creds would be more Identity. Pretty sure on this one but let me know if anyone disagrees.
A tbh. Restricting unnecessary services and setting baseline configs is classic config management, even with that password change mention. It's not Identity if we're just talking about changing defaults one time. Anyone see legit CISSP practice where this wasn't config mgmt?
Not B, A. Changing default passwords might seem like identity, but limiting services and AV updates make config the right call. The identity trap gets people.
Had something like this in a mock and I went with B. Changing default passwords felt like an identity management move, even though the other actions lean config. Might be overthinking it, but that's what I'd pick here-thoughts?
Its A. Option B seems close but the disabling of services and pushing AV updates is way more config than identity. Not 100 percent sure since passwords come up, but all together these sound like secure configuration tasks. Disagree?
Its A for sure, config management handles limiting services and changing default passwords. Patch is mostly just updates, not initial hardening. Pretty confident here but open if someone sees it differently.
Its A, not D. Patch management is more about updates, but "only those services" is config management all the way.
Be respectful. No spam.
