Question 53 (practice exam 16)

Q: What should be implemented to add stronger authentication for a wireless system that supports WPA with pre-shared keys and a backend that supports EAP and TTLS? A: 802.1x using EAP with MSCHAPv2

Q: Why is 802.1x using EAP with MSCHAPv2 the correct choice in this scenario? A: It allows leveraging the backend's EAP/TTLS support for stronger authentication.

Q: Which option would not provide stronger authentication in this scenario? A: WPA2 with a complex shared key

Q: What is the purpose of implementing 802.1x in this scenario? A: To enable stronger, EAP-based authentication for the wireless system.

Q: Why are PKI with user authentication and MAC address filtering with IP filtering not suitable solutions in this scenario? A: The given requirements do not support these methods.

Q: What type of authentication protocol is MSCHAPv2? A: An EAP method for authenticating users with credentials.

Q: What component is likely required on the backend to support 802.1x using EAP with MSCHAPv2? A: A RADIUS server for authentication.