CompTIA Cloud+ Practice Test

What is the best way to ensure that accounts in a cloud environment are promptly disabled when no longer needed?

• A. Require users to contact the administrator to disable their accounts.
• B. Initiate a disablement request for accounts when users leave the company.
• C. Check accounts daily by the cloud systems administrator.
• D. Reboot directory services servers daily to commit disablement requests.

The correct answer is: Require users to contact the administrator to disable their accounts.

The best approach for ensuring that accounts in a cloud environment are promptly disabled when no longer needed is to initiate a disablement request for accounts when users leave the company. This method establishes a proactive process that links account disablement directly to user status changes, ensuring that deactivation occurs promptly once an employee departs the organization. It emphasizes automation and accountability within the IT department, reducing the risk of human error and oversight that can occur with manual checks or requiring user action. A proactive and systematic request process for disabling accounts helps maintain security by ensuring that access rights are revoked appropriately and in a timely manner. This is crucial in protecting sensitive data and systems from unauthorized access following the departure of an employee, thereby reducing the organization's vulnerability to potential security breaches. In contrast, solely relying on users to contact an administrator for account disablement introduces delays and may not lead to consistent or timely responses. Regular checks by a systems administrator, while important, may not be efficient or catch all instances of required disablement, especially if not performed daily. Rebooting directory services serves no purpose in the context of account management; this action does not facilitate or accelerate the disablement process.