The security team is receiving escalated support tickets stating that one of the company's publicly available websites is not loading as expected. Given the following observations:
Which of the following is most likely the root cause?
A.
A certificate signed by a global root certification authority has expired.
B.
A protocol mismatch error is expected to occur when using outdated browsers.
C.
One certificate is being bound to multiple websites on the same server.
D.
Subject alternative names were not used appropriately for subdomains.
Correct answer: D. Subject alternative names were not used appropriately for subdomains.
Why it’s D
www.website.com is served from WEB27 using a cert for website.com (no wildcard, no SAN for “www”).
Browsers reject a host name (“www.website.com”) that isn’t listed in the cert’s CN or SAN extension.
Why the others don’t fit
A. Expired global root CA would break all sites using that CA, not just one.
B. Protocol mismatch shows TLS handshake errors, not name-mismatch browser errors.
C. One cert bound to multiple sites isn’t an issue here—sales.com subdomains use a wildcard properly.
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.CAS-005 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
d857b87
2Â weeks ago