A temporary worker must use clientless SSL VPN with an SSH plug-in to access the console of an internal corporate server, the projects.xyz.com server. For security reasons, the network security auditor insists that the temporary user be restricted to the one internal corporate server, 10.0.4.18. As the network engineer that is responsible for the network access of the temporary user, how can you restrict SSH access to the one projects.xyz.com server?
A.
Configure access-listtemp_user_acl extended permit TCP any host 10.0.4.18 eq22.
B.
Configure access-listtemp_user_acl standard permit host 10.0.4.18 eq 22
C.
Configure access-listtemp_acl webtype permit url ssh://10.0.4.18.
D.
Configure a plug-in SSH bookmark for host 10.0.4.18 and disable network browsing on the clientless SSL VPN portal of the temporary worker.