What must be verified about router configurations to meet 1.2.2?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Prepare for the PCI DSS Test with detailed questions and explanations. Use flashcards and quizzes to enhance knowledge. Ensure you're ready for your certification exam!

Multiple Choice

What must be verified about router configurations to meet 1.2.2?

Explanation:
Maintaining synchronized router configurations is about configuration management and ensuring a device’s active settings match the approved baseline. The running (active) configuration is what the router uses in real time, while the startup (or startup-config) is the saved version that should be loaded on boot. If these two differ, changes you expect to be in effect may not persist after a reboot, or an unintended configuration could be applied, creating gaps in security and network behavior. Verifying synchronization ensures the live policy on the router is always the same as the documented, intended configuration, which supports consistent enforcement of security controls and easier auditing. Archiving configurations on a separate server helps with backups but does not guarantee that the device’s current running configuration equals the saved startup configuration, so it doesn’t by itself ensure consistency. Keeping a configuration that is archived and not changed would prevent legitimate updates and undermine security, since configurations must evolve with risks and requirements. No synchronization allows drift between what’s active and what’s documented, explicitly undermining policy enforcement and change control.

Maintaining synchronized router configurations is about configuration management and ensuring a device’s active settings match the approved baseline. The running (active) configuration is what the router uses in real time, while the startup (or startup-config) is the saved version that should be loaded on boot. If these two differ, changes you expect to be in effect may not persist after a reboot, or an unintended configuration could be applied, creating gaps in security and network behavior. Verifying synchronization ensures the live policy on the router is always the same as the documented, intended configuration, which supports consistent enforcement of security controls and easier auditing.

Archiving configurations on a separate server helps with backups but does not guarantee that the device’s current running configuration equals the saved startup configuration, so it doesn’t by itself ensure consistency. Keeping a configuration that is archived and not changed would prevent legitimate updates and undermine security, since configurations must evolve with risks and requirements. No synchronization allows drift between what’s active and what’s documented, explicitly undermining policy enforcement and change control.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy