Implementing and Configuring Cisco Identity Services Engine (SISE) — Question 16

A network engineer needs to ensure that the access credentials are not exposed during the 802.1X authentication among components.
Which two protocols should be configured to accomplish this task? (Choose two.)

Answer options

• A. PEAP
• B. EAP-TLS
• C. EAP-MD5
• D. EAP-TTLS
• E. LEAP

Correct answer: A, B

Explanation

PEAP and EAP-TLS are both secure protocols that encapsulate the authentication process, thereby protecting access credentials during 802.1X authentication. In contrast, EAP-MD5 does not provide any encryption, making it insecure for this purpose, while EAP-TTLS, although secure, is not as widely recommended as the first two options.