CompTIACompTIA
CNX-001 · Question #40
CNX-001 Question #40: Real Exam Question with Answer & Explanation
The correct answer is D: openssl x509 -noout -modulus -in cert.crt | openssl md5. If the MD5 hashes match, the certificate and private key correspond correctly.
Cloud Network Operations and Troubleshooting
Question
A network load balancer is not correctly validating a client TLS certificate. The network architect needs to validate the certificate installed on the load balancer before progressing. Which of the following commands should the architect use to confirm whether the private key and certificate match?
Options
- Aopenssl-list -noout -modulus -in cert.crt | openssl md5
- Bopenssl req -in certificate.csr -verify
- Copenssl-rsa -noout -modulus -in cert.crt | openssl md5
- Dopenssl x509 -noout -modulus -in cert.crt | openssl md5
Explanation
If the MD5 hashes match, the certificate and private key correspond correctly.
Topics
#TLS certificates#openssl commands#Private key validation#Network troubleshooting
Community Discussion
No community discussion yet for this question.