Comprehensive and Detailed Explanation From Exact Extract:
Failing to log out of a privileged session on a shared device leaves that session accessible to the next user, potentially granting unauthorized access to administrative functions. This scenario aligns with privilege escalation, where an individual gains access to higher-level permissions than they are authorized to have.
Relevant Extract from CompTIA CloudNetX CNX-001 Study Guide - under "Access Control and Security Threats":
"Privilege escalation occurs when a user gains elevated access rights, often due to misconfigurations or negligence, such as unattended administrative sessions." Other options:
* A. IP spoofing involves falsifying source IP addresses.
* B. Zero-day refers to unknown software vulnerabilities.
* C. On-path attacks involve intercepting traffic, not session misuse on local devices.

Comprehensive and Detailed Explanation From Exact Extract:
When SSL/HTTPS inspection is enabled on a firewall, it intercepts and decrypts HTTPS traffic. This requires the firewall to present its own trusted certificate to the client device. If that certificate is expired, the client browser will display a certificate error and block access to the application. This is a common misconfiguration that breaks HTTPS communication.
Relevant Extract from CompTIA CloudNetX CNX-001 Study Guide - under "TLS/SSL Inspection and Certificate Management":
"SSL inspection appliances must have valid certificates installed. Expired or untrusted certificates will result in browsers rejecting the HTTPS session and displaying errors to users." Other options:
* A. Would prevent connection, but not result in certificate errors.
* B. Blocked port 443 would prevent any connection, not cause cert errors.
* C. Client-side certificates are not required unless mutual TLS is configured, which is not stated here.

Comprehensive and Detailed Explanation From Exact Extract:
Risk transference is a risk management strategy in which the financial impact of a risk is shifted to a third party, such as an insurance company. In this scenario, the purchase of an insurance policy to cover potential damage or loss from a natural disaster is an example of transferring risk, not avoiding, mitigating, or accepting it.
Relevant Extract from CompTIA CloudNetX CNX-001 Study Guide under "Risk Management Concepts":
"Risk transference involves moving the responsibility or financial burden of a risk to a third party, often through the purchase of insurance or third-party service agreements." This approach is contrasted with mitigation (reducing risk), acceptance (living with the risk), or avoidance (eliminating the risk).

Comprehensive and Detailed Explanation From Exact Extract:
To accommodate 200 devices in IT and 2,000 devices in Sales, subnetting must allow for appropriate address allocation:
* /22 provides 1,024 addresses # sufficient for IT (200 users)
* /15 provides 65,536 addresses # more than sufficient for Sales (2,000 users) Option C ensures both departments are placed in separate, appropriately sized segments within the private
10.0.0.0/8 range.
Relevant Extract from CompTIA CloudNetX CNX-001 Study Guide - under "IP Addressing and Subnetting":
"Proper subnetting ensures sufficient host addresses and supports future growth. Network segmentation improves manageability and security." Other options:
* A. /30 provides only 2 usable IPs - insufficient for IT.
* B & D: /24 and /25 do not support 2,000 users in Sales.
* B & D also misallocate resources inefficiently.

Video surveillance provides continuous, remote visibility into computer rooms and can be integrated with analytics to generate alerts on unauthorized presence.
NFC access cards enforce controlled entry with a system that logs every card swipe and issues alerts on failed or out-of-hours attempts, giving you auditable access records and immediate notifications of any suspicious activity.