A customer wants FSR and certificate-based authentication. The solution must be simple to deploy. Which method should be used to meet the requirements?
A. EAP-TLS
B. PEAP-MSCHAPv2
C. EAP-FAST
D. PEAP-MSCHAPv2 machine authentication
Which method should be used to meet the requirements?
C may be incorrect, B can be correct
A – hard to implement
B – could be, uses CERTIFICATE on server side
C – EAP-FAST do not use CERTIFICATES, it uses PAC keys. Server side certificate is OPTIONAL
D – PEAP-MSCHAPv2 machine authentication – ??? machine means client side? If yes, client side also do not use certificates
EAP-FAST: EAP-Chaining will do the thing with EAP-TLS as inner auth method… But I don’t think it’s simpler than EAP-TLS on it’s own.
Ambiguous question.