What is required to restrict access to publicly accessible network jacks?

Publicly accessible network jacks create a risk that unauthorized devices could connect or tamper with the network. To mitigate this, access to those jacks must be restricted through physical and/or logical controls. Physical controls include securing jacks in locked panels or rooms, using tamper-evident seals, or mounting covers on unused ports so they cannot be easily accessed. Logical controls include configuring switches with port security, disabling unused ports, implementing network access control (such as 802.1X), and using VLANs or NAC to ensure only authenticated, authorized devices can connect. Together, these controls prevent unauthorized use and make it possible to detect and deter tampering. Logging alone, signage, or permanently disabling all public jacks without a workable alternative do not provide the necessary enforcement and practicality.