CompTIA SecurityX (CAS-005) — Question 247

An administrator needs to craft a single certificate-signing request for a web-server certificate. The server should be able to use the following identities to mutually authenticate other resources over TLS:

• www.int.comptia.org
• webserver01 .int.comptia.org
• 10.5.100.10

Which of the following certificate fields must be set properly to support this objective?

Answer options

• A. Subject alternative name
• B. Organizational unit
• C. Extended key usage
• D. Certificate extension

Correct answer: A

Explanation

The Subject Alternative Name (SAN) field is essential for including multiple identities such as domain names and IP addresses in a single certificate. The other options, while important for different aspects of a certificate, do not directly address the need for supporting multiple identities for TLS mutual authentication.