Matt, a systems security engineer, is determining which credential-type authentication to use
within a planned 802.1x deployment. He is looking for a method that does not require a client
certificate, has a server side certificate, and uses TLS tunnels for encryption. Which credentialtype authentication method BEST fits these requirements?
A.
EAP-TLS
B.
EAP-FAST
C.
PEAP-CHAP
D.
PEAP-MSCHAPv2
Explanation:
Why woulnd’t this be C. Since answer D, MSCHAPv2 provides mutual authentication meaning that client authenticates to server and server to client. The question states something that doesnt require a client cert. Am I missing something?
0
0
All you need to know is PEAP fits the server side certificate mandate. CHAP is obsolete and does not fit within a modern deployment.
0
0