A network administrator at a small office wants to simplify the configuration of mobile clients connecting to an encrypted wireless network.
Which of the following should be implemented in the administrator does not want to provide the wireless password or he certificate to the employees?

A.
WPS
B.
802.1x
C.
WPA2-PSK
D.
TKIP
yup it’s A
Recognizing the popularity of wireless devices in non-enterprise networks, the Wi-Fi
Alliance introduced Wi-Fi Protected Setup (WPS) in 2006. The goal of WPS is to enable
anyone to join a WPS-capable device to a WPS-enabled wireless network just by pressing
two buttons. Press the button on the WAP (Figure 7-4), then press the button on the
device you want to join to the network; your device connects to the SSID and takes on
the WAP’s WPA2 encryption. Neat!
Alternatively, every WPS-enabled WAP comes with a fixed eight-digit pin code to
allow devices without a WPS button (like a laptop) to connect to the WAP. You pressed
the button on the router and then entered the router’s pin code as the SSID’s password.
Unfortunately, the eight-digit code has two problems. First, only seven of the eight
digits are used (the eighth digit was only a checksum). Additionally, the seven digits are
confirmed in two groups: the first three values, then the last four. This means it only
takes about 11,000 guesses to crack a WPA pin code. Yipe!
6
2
I think anyone taking the test should know better than to ever use WPS. I hope that’s not the right answer.
The users of this network are employees, so should have a username/password already. So why not use a Radius server and 802.1x as in answer B? The only reason I can see to not do this is because it is mentioned that this is in a “small office” which may not have the resources.
8
1