Question

A company uses an enterprise desktop imaging solution to manage deployment of its desktop computers. Desktop computer users are only permitted to use software that is part of the baseline image.

Which of the following technical solutions was MOST likely deployed by the company to ensure only known-good software can be installed on corporate desktops?

A. Network access control
B. Configuration Manager
C. Application whitelisting
D. File integrity checks

Answer 1

Application whitelisting is the approach that aligns with allowing only a predefined set of software to run on corporate desktops, as it restricts software execution to those specifically approved within a baseline image.

Step-by-step explanation:

To ensure that only known-good software can be installed on corporate desktops, the technical solution that was most likely deployed by the company is C. Application whitelisting. Application whitelisting is a security approach that allows only a predefined set of software to run on a system while blocking all other software, including malware and unapproved applications. This method is more effective than traditional antivirus approaches in certain enterprise environments because it prevents users from executing software that is not included on the whitelist, thus maintaining a secure and controlled software environment.

While options such as Network access control, Configuration Manager, and File integrity checks are important parts of a comprehensive security strategy, they serve different purposes. Network access control manages devices and their access to network resources, Configuration Manager oversees system configurations, and File integrity checks ensure that files have not been tampered with. However, Application whitelisting directly aligns with the requirement to restrict software execution to a baseline image.