Refer to the exhibit. Based on the configuration for the client's certificate private key as shown, which statements accurately describe the settings? (Choose two.)
A.
More bits in the private key will increase security.
B.
The private key for TLS client certificates is not created.
C.
The private key is stored in the ClearPass server.
D.
More bits in the private key will reduce security.
AE
The option "created by device" will use SCEP to provision the EAP-TLS client certificate. The certificate signing request will be generated in the device and get it signed against OnBoard CA , so the private key is known only to the device. When you use the option"created by device", re-provisioning a client will generate new certificate every time.
https://community.arubanetworks.com/browse/articles/blogviewer?blogkey=c768b34a-cf40-4736-8222-39a8533be380
More bits = more security
The cert and key are generated by the device, the cert is used by Clearpass to encrypt and the key is used to decrypt. thus kept on the device.
A and E. Private key is mandatory and must be known only by the device, so B and C are false. More bits in the key make it more difficult to guess.
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.HPE6-A68 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
tezk
2 years, 7 months agopabx31
2 years, 8 months agoyouuuuu
2 years, 9 months agohujinki
2 years, 9 months ago