Which credentialtype authentication method BEST fits these requirements?

Matt, a systems security engineer, is determining which credential-type authentication to use
within a planned 802.1x deployment. He is looking for a method that does not require a client

certificate, has a server side certificate, and uses TLS tunnels for encryption. Which credentialtype authentication method BEST fits these requirements?

Matt, a systems security engineer, is determining which credential-type authentication to use
within a planned 802.1x deployment. He is looking for a method that does not require a client

certificate, has a server side certificate, and uses TLS tunnels for encryption. Which credentialtype authentication method BEST fits these requirements?

A.
EAP-TLS

B.
EAP-FAST

C.
PEAP-CHAP

D.
PEAP-MSCHAPv2

Explanation:

Show Hint

Leave a Reply 2

Your email address will not be published. Required fields are marked *

Angelo

Angelo

Why woulnd’t this be C. Since answer D, MSCHAPv2 provides mutual authentication meaning that client authenticates to server and server to client. The question states something that doesnt require a client cert. Am I missing something?

Reply

Mike

Mike

All you need to know is PEAP fits the server side certificate mandate. CHAP is obsolete and does not fit within a modern deployment.

Reply