A plan includes these security settings for the employee WLAN:
1. WPA2-Enterprise with AES encryption
2. 802.1X with PEAP-MSCHAPv2
However, the customer wants to use certificates to authenticate user devices. Which change brings the plan in alignment with the customer requirements?
A. Use EAP-TLS instead of PEAP-MSCHAPv2
B. The TKIP encryption instead of AES.
C. Add WPA2-PSK as an alternative to WPA2-Enterprise.
D. Add Tunneled TLS (TTLS) as an alternative to PEAP-MSCHAPv2.
A is correct.
From the ACDP book page 231:
Protected EAP (PEAP)-MSCHAPv2 requires usernames and passwords to authenticate while EAP-TLS uses certificates to authenticate users.
Another EAP method is EAP-TTLS, which uses usernames and passwords to authenticate users, much like PEAP.