🔥 3-day streak
CompTIA SecurityX (CAS-005)16 / 120
Question 16 of 120
A financial services company operates a private PKI with an offline root CA. To enable trust for a newly acquired subsidiary that already deployed thousands of endpoints trusting a different existing root, the security engineer must allow certificates issued by the company's intermediate CA to validate on the subsidiary's endpoints WITHOUT redeploying a new root to those endpoints or replacing existing leaf certificates. Which approach best achieves this?
Reviewed for accuracy · Report an issueNext question