ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-208 All Questions

View all questions & answers for the 300-208 exam
Go to Exam

Exam 300-208 topic 1 question 246 discussion

Actual exam question from Cisco's 300-208
Question #: 246
Topic #: 1
[All 300-208 Questions]

When using CA for identity source, which method can be used to provide real-time certificate validation?

  • A. X.509
  • B. PKI
  • C. OCSP
  • D. CRL
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by liketopass at June 12, 2019, 3:10 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Arshy
5 years, 6 months ago
http://www.ciscopress.com/articles/article.asp?p=1684781&seqNum=3 There are three significant approaches that use certificates. The first approach uses certificate revocation lists (CRL), which are periodically downloaded to a router and thus require lower overhead. The second approach uses OCSP, which provides real-time updates and makes a network call for each certificate that is presented. The third approach uses an AAA server and certificates together, which involves the end user performing authentication.
upvoted 1 times
...
liketopass
6 years ago
I think this should be OCSP
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel