A consultant is configuring a vulnerability scanner for a large, global organization in multiple countries. The consultant will be using a service account to scan systems with administrative privileges on a weekly basis, but there is a concern that hackers could gain access to the account and pivot throughout the global network.
Which of the following would be BEST to help mitigate this concern?
A . Create different accounts for each region, each configured with push MFA notifications.
B . Create one global administrator account and enforce Kerberos authentication.
C . Create different accounts for each region, limit their logon times, and alert on risky logins.
D . Create a guest account for each region, remember the last ten passwords, and block password reuse.
Answer: A
Leave a Reply