CompTIA SecurityX (CAS-005) — Question 132

An engineer is designing a wireless access solution that must comply with the IEEE-specified security requirements for the 802.1X protocol. The engineer wants to streamline access by removing the need to provide a WPA2 PSK and domain credentials each time for access. Which of the following actions best meet this requirement? (Choose two.)

Answer options

• A. Issuing client authentication certificates to devices
• B. Issuing a separate 32-bit key to wireless supplicants
• C. Configuring RADIUS with EAP-TLS
• D. Using a geofence over the facility and enforcing it for access
• E. Configuring RADIUS with EAP-PEAP
• F. Configuring RADIUS with EAP-FAST

Correct answer: A, C

Explanation

Issuing client authentication certificates to devices (A) allows for secure, automatic authentication without the need for passwords, while configuring RADIUS with EAP-TLS (C) provides strong security and supports certificate-based authentication. The other options either do not provide the same level of security or do not eliminate the need for repeated credentials effectively.