SY0-501 · Question #147
SY0-501 Question #147: Real Exam Question with Answer & Explanation
The correct answer is B: PEM. The engineer should use the PEM format, as it is a text-based, Base64 encoded representation of X.509 certificates specifically designed for ease of transfer and pasting into text fields.
Question
A Security engineer is configuring a system that requires the X 509 certificate information to be pasted into a form field in Base64 encoded format to import it into the system. Which of the following certificate formats should the engineer use to obtain the information in the required format?
Options
- APFX
- BPEM
- CDER
- DCER
Explanation
The engineer should use the PEM format, as it is a text-based, Base64 encoded representation of X.509 certificates specifically designed for ease of transfer and pasting into text fields.
Common mistakes.
- A. PFX is a binary format that stores a certificate and its private key together, often password-protected, and is not a plain Base64 encoded text format suitable for direct pasting into a text field.
- C. DER (Distinguished Encoding Rules) is a binary encoding format for X.509 certificates and is not directly Base64 encoded text suitable for pasting into a text field.
- D. CER is a generic file extension that can contain certificates in either DER (binary) or PEM (Base64 text) format; however, it is often associated with binary DER-encoded certificates on Windows systems, which does not meet the Base64 requirement for pasting.
Concept tested. X.509 Certificate Formats (PEM, DER, PFX)
Reference. https://learn.microsoft.com/en-us/windows-server/identity/ad-cs/x.509-certificate-formats
Community Discussion
No community discussion yet for this question.