ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam SY0-401 All Questions

View all questions & answers for the SY0-401 exam
Go to Exam

Exam SY0-401 topic 1 question 153 discussion

Actual exam question from CompTIA's SY0-401
Question #: 153
Topic #: 1
[All SY0-401 Questions]

A security administrator must implement a network authentication solution which will ensure encryption of user credentials when users enter their username and password to authenticate to the network.
Which of the following should the administrator implement?

  • A. WPA2 over EAP-TTLS
  • B. WPA-PSK
  • C. WPA2 with WPS
  • D. WEP over EAP-PEAP
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
D: Wired Equivalent Privacy (WEP) is designed to provide security equivalent to that of a wired network. WEP has vulnerabilities and isnt considered highly secure. Extensible Authentication Protocol (EAP) provides a framework for authentication that is often used with wireless networks. Among the five EAP types adopted by the WPA/ WPA2 standard are EAP-TLS, EAP-PSK, EAP-MD5, as well as LEAP and PEAP.
PEAP is similar in design to EAP-TTLS, requiring only a server-side PKI certificate to create a secure TLS tunnel to protect user authentication, and uses server- side public key certificates to authenticate the server. It then creates an encrypted TLS tunnel between the client and the authentication server. In most configurations, the keys for this encryption are transported using the server's public key. The ensuing exchange of authentication information inside the tunnel to authenticate the client is then encrypted and user credentials are safe from eavesdropping.
by aki at July 16, 2020, 1:48 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
fc040c7
2 months, 2 weeks ago
Selected Answer: A
WPA2 (Wi-Fi Protected Access 2) with EAP-TTLS (Extensible Authentication Protocol-Tunneled Transport Layer Security) provides a secure method for encrypting user credentials during the authentication process. EAP-TTLS creates a secure tunnel for authentication, ensuring that usernames and passwords are encrypted while they are transmitted over the network. WEP over EAP-PEAP is outdated and insecure.
upvoted 1 times
...
aki
4 years, 9 months ago
According to Darril's Get Certified Get Ahead Study Guide , it is WPA2 over EAP-TTLS https://blogs.getcertifiedgetahead.com/802-1x-server-authentication-methods/ Can anyone explain what's the difference between this 2 questions?
upvoted 2 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago