Sophos Certified Engineer Practice Exam

Enabling Multi-factor Authentication is the correct choice for requiring two-factor authentication for all administrator logins. This setting enhances security by requiring not only a password but also an additional verification step, such as a code sent to a mobile device or an authentication app. This two-step process significantly reduces the risk of unauthorized access, as it demands something the user knows (the password) and something the user possesses (the second factor). On the other hand, Single Sign-on is primarily focused on streamlining access across various applications without the need for repeated logins, which does not specifically enforce two-factor authentication. Authentication Lock may pertain to locking accounts after several failed login attempts, rather than enforcing the dual authentication process. Two-step Verification can often be considered synonymous with multi-factor authentication, but in a less formal context and may not encompass the variety of methods that multi-factor authentication covers. Thus, Multi-factor Authentication is the most comprehensive choice for ensuring enhanced security for administrator logins.