• Home
  • Cisco, 400-251
  • Which two authentication methods can ensure that an employee on a personal device cant use his or her Active Directory credentials to log on to the network by simply reconfiguring their supplicant to use 802.1x and getting unfettered access?

Which two authentication methods can ensure that an employee on a personal device cant use his or her Active Directory credentials to log on to the network by simply reconfiguring their supplicant to use 802.1x and getting unfettered access?

Posted by: Pdfprep Category: 400-251 Tags: , , Post Date: December 3, 2020

In an effort to secure your enterprise campus network, any endpoint that connects to the network must authenticate before being granted access. For all corporate-owned endpoints, such as laptops, mobile phones and tables, you would like to enable 802. 1x and once authenticated allow full access to the network. For all employee owned personal devices, you would like to use web authentication, and only allow limited access to the network.

Which two authentication methods can ensure that an employee on a personal device cant use his or her Active Directory credentials to log on to the network by simply reconfiguring their supplicant to use 802.1x and getting unfettered access? (Choose two)
A . Use PEAP-EAP-MSCHAPV2
B . Use EAP-FAST
C . Use EAP-TLS or EAP-TTLS
D . Use EAP-MSCHAPv2
E . Use PAP-CHAP-MSCHAP

Answer: CF



Author

Leave a Reply

Your email address will not be published.