Given:
A WLAN consultant has just finished installing a WLAN controller with 15 controller-based APs. Two SSIDs with separate VLANs are configured for this network,
and both VLANs are configured to use the same RADIUS server. The SSIDs are configured as follows:
SSID Blue – VLAN 10 – Lightweight EAP (LEAP) authentication – CCMP cipher suite SSID Red – VLAN 20 – PEAPv0/EAP-TLS authentication – TKIP cipher suite
The consultant’s computer can successfully authenticate and browse the Internet when using the Blue SSID. The same computer cannot authenticate when using
the Red SSID.
What is a possible cause of the problem?
A.
The Red VLAN does not use server certificate, but the client requires one.
B.
The TKIP cipher suite is not a valid option for PEAPv0 authentication.
C.
The client does not have a proper certificate installed for the tunneled authentication within the established TLS tunnel.
D.
The consultant does not have a valid Kerberos ID on the Blue VLAN.