New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

ISC2 ISSMP Exam - Topic 4 Question 12 Discussion

Actual exam question for ISC2's ISSMP exam
Question #: 12
Topic #: 4
[All ISSMP Questions]

You are the Network Administrator for a software company. Due to the nature of your company's business, you have a significant number of highly computer savvy users. However, you have still decided to limit each user access to only those resources required for their job, rather

than give wider access to the technical users (such as tech support and software engineering personnel). What is this an example of?

Show Suggested Answer Hide Answer
Suggested Answer: B

No matter how technically proficient the users are, it is always proper for an administrator to grant each user the least/lowest privileges possible for them to do their job (thus the term least privileges). You should never grant any user any more access than they require to perform their job functions.

Answer option D is incorrect. This is absolutely not poor resource management, but rather wise security policy, thus wise resource management.

Answer option A is incorrect. The term 'maximum control' is not a valid network security term.

Answer option C is incorrect. An ACL or access control list is used to control access to resources by matching a user on the list with rights to a resource. This may or may not have the user with more access than their job requires.


by Lonna at May 03, 2022, 04:13 AM

Limited Time Offer

25%

Off

Get Premium ISSMP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Mila
4 months ago
I thought it was about maximum control, not least privileges.
upvoted 0 times
...
Wava
4 months ago
This is just good security practice, no doubt!
upvoted 0 times
...
Malcolm
4 months ago
Wait, is this really a good idea?
upvoted 0 times
...
Leah
4 months ago
I agree, it makes sense to limit access.
upvoted 0 times
...
Isadora
5 months ago
Definitely the principle of least privileges.
upvoted 0 times
...
Angella
5 months ago
I feel like this is a classic example of least privileges, especially since it mentions limiting access for tech-savvy users.
upvoted 0 times
...
Cherelle
5 months ago
I remember practicing a similar question, and I think the answer was definitely about restricting access to what users need for their jobs.
upvoted 0 times
...
Salina
5 months ago
I think this is about limiting access, so it might be the principle of least privileges, but I'm not entirely sure.
upvoted 0 times
...
Helga
5 months ago
I'm a bit confused; could it be the principle of maximum control? That sounds familiar, but it doesn't quite fit the scenario.
upvoted 0 times
...
Rhea
5 months ago
I think I know the answer, but I want to double-check my understanding before selecting an option.
upvoted 0 times
...
Marcos
5 months ago
Salesforce Anywhere seems like it could be a flexible solution, but I'm not sure if it's the best fit for this specific scenario. I'll need to weigh the pros and cons of each option.
upvoted 0 times
...

Save Cancel