Three companies want to allow their employees to seamlessly connect to each other’s wireless
corporate networks while keeping one consistent wireless client configuration. Each company
wants to maintain its own authentication infrastructure and wants to ensure that an employee who
is visiting the other two companies is authenticated by the home office when connecting to the
other companies’ wireless network. All three companies have agreed to standardize on 802.1x
EAP-PEAP-MSCHAPv2 for client configuration. Which of the following should the three companies
implement?
A.
The three companies should agree on a single SSID and configure a hierarchical RADIUS
system which implements trust delegation.
B.
The three companies should implement federated authentication through Shibboleth connected
to an LDAP backend and agree on a single SSID.
C.
The three companies should implement a central portal-based single sign-on and agree to use
the same CA when issuing client certificates.
D.
All three companies should use the same wireless vendor to facilitate the use of a shared cloud
based wireless controller.