| Compbck 2005-05-26, 6:25 am |
| For those of you who are still pondering over what CompTIA maybe expecting from this particular question:
I consider that answer is C is correct for the following reason:
When a privileged account has been established it will have certain access rights. Following its creation, it needs to be examined and audited, to ensure that unauthorised or unintentional access to sensistive or protected resources,or escalation of privileges does not take place.
The question is really asking about Monitoring Access Rights following the creation of an account and using auditing as a tool to ensure users do not gain access to inappropriate information or resources.
The word "Privilege" is a bit of a red herring, in that all users have some form of privilege within a network, which following initial creation needs to be monitored and controlled. |