Pre-Summer Special Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: validbest

Discussions
  1. Home
  2. Discussions
  3. CompTIA
  4. CompTIA Security+
  5. SY0-701 Discussions
  6. SY0-701 Exam Topic 18 Question 170 Discussion
 CompTIA Discussions
Exam SY0-701 All Questions
Exam SY0-701 All Questions

View all questions & answers for the SY0-701 exam

Go to Exam

CompTIA Security+ SY0-701 Question # 170 Topic 18 Discussion

SY0-701 Exam Topic 18 Question 170 Discussion:
Question #: 170
Topic #: 18

A security analyst finds a rogue device during a monthly audit of current endpoint assets that are connected to the network. The corporate network utilizes 002.1X for access control. To be allowed on the network, a device must have a Known hardware address, and a valid user name and password must be entered in a captive portal. The following is the audit report:

SY0-701 Question 170

Which of the following is the most likely way a rogue device was allowed to connect?
A.

A user performed a MAC cloning attack with a personal device.

B.

A DMCP failure caused an incorrect IP address to be distributed

C.

An administrator bypassed the security controls for testing.

D.

DNS hijacking let an attacker intercept the captive portal traffic.

Get Premium SY0-701 Questions
Actual exam question for CompTIA SY0-701 exam by Zephyr50863 at Apr 28, 2026, 7:06:19 AM

Contribute your Thoughts:


Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Submit