What type of access does EPC control when protecting sensitive resources?

Access based on endpoint security compliance is central to the Endpoint Compliance (EPC) feature. EPC ensures that only devices meeting specific security criteria are granted access to sensitive resources. This means that for a user or their device to connect, their endpoint must comply with determined security policies, such as having updated antivirus software, an enabled firewall, and the latest operating system patches.

This approach not only protects sensitive resources but also creates a secure environment by filtering out devices that may pose a risk due to non-compliance. By implementing compliance checks, organizations can safeguard their networks from potential threats that arise from compromised or unsecured devices.

The other options do not encapsulate the role of EPC accurately; unrestricted access poses a significant security risk, access exclusively for trusted users with admin rights may limit overall user access unnecessarily, and complete denial of access fails to differentiate based on the state of endpoint security, which overlooks the possibility of granting access to compliant devices.