After implementing PSMP hardening, which best describes root user access via password?

The implementation of PSMP (Privileged Session Management Proxy) hardening significantly enhances the security of root user access by disabling password-based logins for the root user. This approach is a key security measure designed to reduce the attack surface and prevent unauthorized access. By disabling direct root access via a password, it mitigates the risks associated with password guessing and brute-force attacks, requiring users to authenticate through more secure methods, such as SSH keys or through the PSMP itself.

Hardening measures generally promote a principle known as "least privilege," ensuring that only authorized users have access to systems and that such access is tightly controlled and monitored. Disabling root access via passwords aligns with this principle and enhances overall system integrity. It also helps enforce accountability by ensuring that access is logged and can be audited, which is critical in environments that require stringent security protocols.

Other options don't effectively capture the security posture intended by PSMP hardening:

• Allowing root access via password would compromise security by making it easier for malicious actors to gain unauthorized entry.

• Limiting access only to local methods is not typical in a hardened environment, which usually favors remote management practices.

• Encouraging root access for troubleshooting contradicts the goal of minimizing exposure and maintaining strict control over privileged