Which EAP method is described as using public key infrastructure with certificates installed on both the client and the server?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Study for the CompTIA SecurityX Test. Equip yourself with comprehensive flashcards and multiple choice questions that include hints and explanations. Gear up for your certification exam!

Multiple Choice

Which EAP method is described as using public key infrastructure with certificates installed on both the client and the server?

Mutual certificate-based authentication using a PKI-backed TLS handshake is what EAP-TLS uses. In this method, both the client and the server hold digital certificates issued by a trusted certificate authority. During the TLS handshake, the server proves its identity with its certificate, and the client also presents its certificate to prove its identity to the server. This bidirectional certificate exchange, under a PKI, provides strong, certificate-based authentication and establishes a secure, encrypted channel for further credentials or data.

Other EAP methods don’t fit this description because they don’t require certificates on both sides. For example, one method uses a simple password-based challenge without certificate-based mutual authentication. Another method involves a TLS tunnel where the server is authenticated and inner credentials are used inside the tunnel, but the client may not present a certificate. The last method uses a protected tunnel approach that is typically configured with pre-shared or PAC-based credentials rather than a full client certificate setup.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy