You were hired as a wireless consultant to plan and design a secure WLAN on a Cisco Unified
Wireless Network, allowing access only by the employees of the company. The requirements are as
follows:
Authenticate employees based on their existing Active Directory user domain credentials.
The username/password credentials need to be protected during the authentication handshake by
using a PKI.
Encrypt data traffic using the strongest encryption method defined by the 802.11i standard.
Implement a standard authentication method that is supported by most wireless clients and RADIUS
servers.
What option meets these requirements?
A.
EAP-TLS with WPA2-AES
B.
PEAPv0/EAP-MS-CHAPv2 with WPA2-AES
C.
EAP-FAST/EAP-MS-CHAPv2 (anonymous PAC provisioning) with WPA2-TKIP
D.
EAP-FAST/EAP-MS-CHAPv2 (anonymous PAC provisioning) with WPA2-AES