Question 13 - COMPTIA Cloud+ CV0-004 Real Exam Questions [Jan 2026 Update]

Q: 13

HOTSPOT A highly regulated business is required to work remotely, and the risk tolerance is very low. You are tasked with providing an identity solution to the company cloud that includes the following: secure connectivity that minimizes user login tracks user activity and monitors for anomalous activity requires secondary authentication INSTRUCTIONS Select controls and servers for the proper control points.

Your Answer

Correct Answer:

FIRST CONTROL: SSO

SECOND CONTROL: MFA

SERVER: SIEM

Explanation

This configuration correctly implements the required security layers for a low-risk tolerance identity solution.

SSO (Single Sign-On): This control addresses the requirement to minimize user logins. It allows authenticated users to access multiple applications and resources within the cloud environment without needing to log in repeatedly.
MFA (Multi-Factor Authentication): This control fulfills the need for secondary authentication. It enhances security by requiring users to provide two or more verification factors, making it significantly harder for unauthorized users to gain access.
SIEM (Security Information and Event Management): This server is essential to track user activity and monitor for anomalies. A SIEM system collects, aggregates, and analyzes log data from across the network, including authentication events from SSO and MFA, to detect and alert on suspicious behavior.

References

National Institute of Standards and Technology (NIST) Special Publication 800-63-3, Digital Identity Guidelines. This document details modern identity solutions.

For SSO: Section 4.2 discusses federation and SSO as a mechanism to provide a "seamless user experience when accessing multiple applications."

For MFA: Section 5.1, "Authenticator and Verifier Requirements," outlines the use of multiple factors for authentication to achieve higher assurance levels.

Source: https://doi.org/10.6028/NIST.SP.800-63-3

National Institute of Standards and Technology (NIST) Special Publication 800-92, Guide to Computer Security Log Management. This guide provides a foundation for security monitoring.

For SIEM: Section 2.3.4, "Log Analysis Tools," describes how SIEMs centralize log storage and analysis, providing "correlation of events among multiple log sources" which is crucial for detecting anomalous activity.

Source: https://doi.org/10.6028/NIST.SP.800-92

Saltzer, J. H., & Kaashoek, M. F. (2009). Principles of Computer System Design: An Introduction. Morgan Kaufmann. This textbook covers foundational security principles.

For all concepts: Chapter 10, "Security and Protection," discusses the principles of authentication (including multi-factor) and auditing (the basis of SIEM) as fundamental components for securing systems, particularly in networked environments. (Refer to sections on authentication and accountability).

Premium Access Includes

FLASH OFFER

avail 10% DISCOUNT on YOUR PURCHASE