Given:
ABC Corporation is evaluating the security solution for their existing WLAN. Two of their supported solutions include a PPTP VPN and 802.1X/LEAP. They have

used PPTP VPNs because of their wide support in server and desktop operating systems. While both PPTP and LEAP adhere to the minimum requirements of the
corporate security policy, some individuals have raised concerns about MS-CHAPv2 (and similar) authentication and the known fact that MS-CHAPv2 has proven
vulnerable in improper implementations.
As a consultant, what do you tell ABC Corporation about implementing MS-CHAPv2 authentication? (Choose 2)

A.
MS-CHAPv2 is compliant with WPA-Personal, but not WPA2-Enterprise.

B.
MS-CHAPv2 is subject to offline dictionary attacks.

C.
LEAP’s use of MS-CHAPv2 is only secure when combined with WEP.

D.
MS-CHAPv2 is only appropriate for WLAN security when used inside a TLS-encrypted tunnel.

E.
MS-CHAPv2 uses AES authentication, and is therefore secure.

F.
When implemented with AES-CCMP encryption, MS-CHAPv2 is very secure.