An organization recently upgraded its wireless infrastructure to support WPA2 and requires all
clients to use this method. After the upgrade, several critical wireless clients fail to connect
because they are only WEP compliant. For the foreseeable future, none of the affected clients
have an upgrade path to put them into compliance with the WPA2 requirement. Which of the
following provides the MOST secure method of integrating the non-compliant clients into the
network?

A.
Create a separate SSID and WEP key to support the legacy clients and enable detection of
rogue APs.

B.
Create a separate SSID and WEP key on a new network segment and only allow required
communication paths.

C.
Create a separate SSID and require the legacy clients to connect to the wireless network using
certificate-based 802.1x.

D.
Create a separate SSID and require the use of dynamic WEP keys.