CompTIA CASP+ (CAS-004) — Question 74

An application server was recently upgraded to prefer TLS 1.3, and now users are unable to connect their clients to the server. Attempts to reproduce the error are confirmed, and clients are reporting the following:
ERR_SSL_VERSION_OR_CIPHER_MISMATCH
Which of the following is MOST likely the root cause?

Answer options

• A. The client application is testing PFS.
• B. The client application is configured to use ECDHE.
• C. The client application is configured to use RC4.
• D. The client application is configured to use AES-256 in GCM.

Correct answer: C

Explanation

The correct answer is C because RC4 is an outdated cipher that is not supported in TLS 1.3, leading to the ERR_SSL_VERSION_OR_CIPHER_MISMATCH error. Options A, B, and D involve other cryptographic mechanisms that are compatible with TLS 1.3 and would not cause this specific issue.