312-50V13 · Question #611
As the Chief Information Security Officer (CISO) at a large university, you are responsible for the security of a campus-wide Wi-Fi network that serves thousands of students, faculty, and staff. Recen
The correct answer is D. Implement 802.1X authentication. To mitigate unauthorized network access due to shared Wi-Fi credentials in a campus environment, implementing 802.1X authentication is the most suitable measure.
Question
Options
- AImplement network segmentation
- BDeploy a VPN for the entire campus
- CEnforce a policy of regularly changing Wi-Fi passwords
- DImplement 802.1X authentication
How the community answered
(39 responses)- A5% (2)
- B10% (4)
- C3% (1)
- D82% (32)
Why each option
To mitigate unauthorized network access due to shared Wi-Fi credentials in a campus environment, implementing 802.1X authentication is the most suitable measure.
Network segmentation isolates network segments but does not address the issue of unauthorized access *within* a segment caused by shared credentials.
Deploying a VPN encrypts traffic and can provide secure remote access, but it doesn't solve the problem of users sharing their Wi-Fi login credentials for initial network access.
Regularly changing Wi-Fi passwords is a good security practice but does not prevent users from sharing the *new* password once it is set, nor does it provide individual accountability.
802.1X is an authentication standard that provides port-based network access control, requiring users to authenticate before gaining network access. This standard supports centralized authentication mechanisms like RADIUS, allowing individual user credentials to be validated, thereby preventing shared passwords from granting unauthorized access and providing traceability for each user session.
Concept tested: 802.1X port-based authentication
Source: https://learn.microsoft.com/en-us/windows-server/networking/technologies/802-1x/802-1x-authentication-overview
Topics
Community Discussion
No community discussion yet for this question.