Exam 200-301 topic 1 question 883 discussion

Did you notice? Only the first half of the questions contained a very high percentage of correct answers.

Chat GPT: When session resumption is disabled for an EAP-TLS connection, after the EAP success message is received, the next step is the four-way handshake. This is part of the process used to establish a secure session key between the client and the access point in a WPA2 (or similar) environment.

..The correct answer is: B. four-way handshake When session resumption is disabled for an EAP-TLS connection, the step that immediately follows the receipt of the EAP success message is the four-way handshake. This handshake is used to establish encryption keys (such as the Pairwise Transient Key, or PTK) for securing the communication between the client (supplicant) and the wireless access point...

this is worded really bad,

im going with D

Here is a more detailed explanation of the steps involved in EAP-TLS authentication when session resumption is disabled: The client sends an EAP-Request message to the authentication server. The authentication server selects an EAP method and sends an EAP-Response message to the client. The client and authentication server exchange EAP messages until the authentication is successful. The authentication server sends an EAP-Success message to the client. The client sends an EAPOL-Key frame to the authenticator. The authenticator sends an EAPOL-Key frame to the authentication server. The authentication server validates the EAPOL-Key frame and sends an EAPOL-Key frame to the authenticator. The authenticator sends an EAPOL-Key frame to the client. The client and authenticator exchange four-way handshake messages to establish a new TLS session. Once the four-way handshake is complete, the client can access the network.

This question is messed up. After the EAP Succes on a EAP-TLS scenario you start the 4-way handshake which is made by 4 EAPOL-KEY frames... Knowing cisco I would go D, but as usual more than one answer may apply

When session resumption is disabled for an EAP-TLS connection, the step that immediately follows the receipt of the EAP success message is the 802.1X authentication. After the EAP success message is received, the authentication server sends an EAP success message to the supplicant indicating that the authentication was successful, and then the supplicant sends an EAPOL-logoff message to the authenticator to terminate the session. After the session is terminated, the supplicant must re-authenticate the next time it tries to connect to the network. Therefore, the next step in the process is to initiate a new 802.1X authentication exchange between the supplicant and the authenticator, starting with the EAPOL-start frame. Option C, 802.1X authentication, is the correct answer.

When session resumption is disabled for an EAP-TLS connection, the step that immediately follows the receipt of the EAP success message is the generation of the Pairwise Master Key (PMK) and the initiation of the four-way handshake. Therefore, the correct answer is B. four-way handshake.

answer is definitely D, smh

Yeah, "D" looks like correct answer

you are right oatmeal turkey its DDDD

802.1X is performed by EAP-TLS authentication, 802.1X is not a "step" so C is incorrect. According to this source, what follows the EAP Success message is a series of four EAPOL-Key frames known as the EAPOL-Key exchange: https://www.securew2.com/blog/802-1x-eap-tls-authentication-flow-explained