CompTIA
CAS-002 · Question #237
CAS-002 Question #237: Real Exam Question with Answer & Explanation
Sign in or unlock CAS-002 to reveal the answer and full explanation for question #237. The question stem and answer options stay visible for context.
Question
A security administrator is tasked with implementing two-factor authentication for the company VPN. The VPN is currently configured to authenticate VPN users against a backend RADIUS server. New company policies require a second factor of authentication, and the Information Security Officer has selected PKI as the second factor. Which of the following should the security administrator configure and implement on the VPN concentrator to implement the second factor and ensure that no error messages are displayed to the user during the VPN connection? (Select TWO).
Options
- AThe user's certificate private key must be installed on the VPN concentrator.
- BThe CA's certificate private key must be installed on the VPN concentrator.
- CThe user certificate private key must be signed by the CA.
- DThe VPN concentrator's certificate private key must be signed by the CA and installed on
- EThe VPN concentrator's certificate private key must be installed on the VPN concentrator.
- FThe CA's certificate public key must be installed on the VPN concentrator.
Unlock CAS-002 to see the answer
You've previewed enough free CAS-002 questions. Unlock CAS-002 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.