You deployed an app that transmits sensitive data and you require the app to use the VPN. In testing, you see that the app tries to connect without the VPN. How could you fix this?
Choose an answer
Tap an option to check your answer.
Correct answer: You must configure the VPN policy to deny app access to the network if the VPN is unavailable..
Why this is the answer
The correct solution is to configure the VPN policy to deny app access if the VPN is unavailable. This ensures that the app, which handles sensitive data, cannot bypass the VPN and transmit data over an unsecure connection. This is a technical control that enforces the security requirement. Not allowing users to connect to public WiFi is a general security measure but doesn't guarantee the app uses the VPN when connected to other networks. Asking the developer to hard code a clear text token is a severe security vulnerability and would compromise data, not protect it. Educating users is a good practice for general security awareness but does not prevent the app from attempting to connect without the VPN if the policy allows it.
Pass your exam — without the endless answer hunt
Get every verified question and explanation for this exam in one place, and save hours of prep. 1,000+ certifications · 20+ languages · free to start.
Pass your exam faster → No card needed