Implementing and Operating Cisco Security Core Technologies (SCOR) — Question 311

What are two functions of IKEv1 but not IKEv2? (Choose two.)

Answer options

• A. IKEv1 conversations are initiated by the IKE_SA_INIT message.
• B. With IKEv1, aggressive mode negotiates faster than main mode.
• C. IKEv1 uses EAP for authentication.
• D. NAT-T is supported in IKEv1 but not in IKEv2.
• E. With IKEv1, when using aggressive mode, the initiator and responder identities are passed in cleartext.

Correct answer: B, E

Explanation

The correct answers are B and E because aggressive mode in IKEv1 does indeed negotiate faster than main mode, and it transmits identities in cleartext. Options A, C, and D are incorrect as they either pertain to features that are present in both versions or do not accurately describe the differences between IKEv1 and IKEv2.