CompTIA Cloud+ Practice Test

Disable ads (and more) with a membership for a one time $2.99 payment

Prepare for the CompTIA Cloud+ Exam with our interactive tests. Access diverse question formats with detailed explanations for each answer. Ace your exam!

Start Multiple Choice Practice Test
Start Flash Cards

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.

Which of the following is NOT a user account hardening recommendation?

  1. Disabling default accounts

  2. Implementing whitelisting for web servers

  3. Granting ephemeral ports access to the DMZ

  4. Shutting down unused services

The correct answer is: Granting ephemeral ports access to the DMZ

The correct choice indicates that granting ephemeral ports access to the DMZ is not considered a user account hardening recommendation. User account hardening refers to practices that enhance the security of user accounts against unauthorized access and potential vulnerabilities. Techniques typically include disabling default accounts, which are often factory settings that may be well-known and exploited by attackers; implementing whitelisting for web servers, which restricts the running applications and services to a predefined list; and shutting down unused services to minimize available pathways that attackers could exploit. While ephemeral ports are related to network communication and typically facilitate connections rather than securing individual user accounts, their access can expose the DMZ to potential vulnerabilities if not managed correctly. Granting unrestricted access to these ports does not directly contribute to hardening user accounts. As a result, understanding the focus of hardening practices is crucial in identifying which actions truly enhance account security.

More Questions Like This