A senior cybersecurity engineer is solving a digital certificate issue in which the CA de…

Question

A senior cybersecurity engineer is solving a digital certificate issue in which the CA denied certificate issuance due to failed subject identity validation. At which of the following steps within the PKI enrollment process would the denial have occurred?

Accepted Answer

Correct answer: A. A. RAB. OCSP — The denial would have occurred at the RAB (Registration Authority) step, where the subject's identity is verified before the CA can issue a certificate. If the identity validation fails at this stage, the CA cannot proceed with issuing the certificate. The other options, such as OCSP, CA, and IdP, are related to other processes in the PKI but do not directly handle the initial identity validation necessary for certificate issuance.

CompTIA SecurityX (CAS-005) — Question 18

Answer options

Correct answer: A

Explanation