Jane, a security administrator, needs to implement a secure wireless authentication method
that uses a remote RADIUS server for authentication. Which of the following is an
authentication method Jane should use?
A.
WPA2-PSK
B.
WEP-PSK
C.
CCMP
D.
LEAP
Why is the answer D – LEAP? I think it should be A – WPA2-PSK. Can you please explain why?
0
0
Because PSK (Pre-Shared Key) is a local authentication by the WAP. They want a remote RADIUS server to do the authentication.
Protected EAP (PEAP) is supported by RADIUS.
0
0
Sorry, I meant LEAP, a Cisco proprietary method, is supported by RADIUS
0
0
Because I’m awesome!!
0
0
WPA-PSK does not use Radius, WPA2-Enterprise does and LEAP is the protocol to access the Radius server.
0
0
A & B are wrong because they use Pre Shared Key (PSK). This means that they will authenticate with a key that was pre established on both devices. The question is asking to authenticate with a remote RADIUS server. C is also wrong because CCMP/AES is used for encryption. That leaves D for the win!!
0
0
Are these questions on the exam or just practice questions? Can someone verify who has taken it within last month, please?
0
0
LEAP uses dynamic Wired Equivalent Privacy (WEP) keys that are changed with more frequent authentications between a client and a RADIUS server. WEP keys are less likely to be cracked — and less long-lived if cracked — due to this frequency.
0
0
Key words: RADIUS and WIRELESS
LEAP is a wireless protocol used in RADIUS.
A RADIUS server is a server with a database of user accounts and passwords used as a central authentication database for users requiring network access.
The Lightweight Extensible Authentication Protocol (LEAP) is a proprietary wireless LAN authentication method developed by Cisco Systems.
Important features of LEAP are dynamic WEP keys and mutual authentication (between a wireless client and a RADIUS server).
LEAP allows for clients to reauthenticate frequently; upon each successful authentication, the clients acquire a new WEP key (with the hope that the WEP keys don’t live long enough to be cracked).
LEAP may be configured to use TKIP instead of dynamic WEP.
0
0