SY0-501 · Question #400
SY0-501 Question #400: Real Exam Question with Answer & Explanation
The correct answer is D: Deploying certificates to endpoint devices. The question asks for a critical requirement when configuring EAP-TLS for a wireless network. The correct answer highlights the necessity of deploying certificates to endpoint devices for successful authentication.
Question
A security engineer is configuring a wireless network with EAP-TLS. Which of the following activities is a requirement for this configuration?
Options
- ASetting up a server
- BConfiguring federation between authentication servers
- CEnabling TOTP
- DDeploying certificates to endpoint devices
Explanation
The question asks for a critical requirement when configuring EAP-TLS for a wireless network. The correct answer highlights the necessity of deploying certificates to endpoint devices for successful authentication.
Common mistakes.
- A. While an authentication server (like a RADIUS server) is necessary for EAP-TLS, 'setting up a server' is a general prerequisite for many network authentication schemes and not specific to the unique certificate-based requirement on the client side that defines EAP-TLS.
- B. Configuring federation enables trust between different identity providers or domains, but it is not a fundamental requirement for the core EAP-TLS authentication mechanism on a single wireless network.
- C. TOTP (Time-based One-Time Password) is a form of multi-factor authentication; it is distinct from and not a direct requirement for the EAP-TLS protocol, which relies on digital certificates for strong authentication.
Concept tested. EAP-TLS client certificate requirement
Reference. https://learn.microsoft.com/en-us/windows-server/networking/technologies/nps/nps-plan-eap-tls
Community Discussion
No community discussion yet for this question.