CompTIA Security+ (SY0-601) — Question 629

A systems administrator is redesigning how devices will perform network authentication. The following requirements need to be met:

• An existing internal certificate must be used.
• Wired and wireless networks must be supported.
• Any unapproved device should be isolated in a quarantine subnet.
• Approved devices should be updated before accessing resources.

Which of the following would best meet the requirements?

Answer options

• A. 802.1X
• B. EAP
• C. RADIUS
• D. WPA2

Correct answer: A

Explanation

802.1X is the best choice as it provides port-based network access control, allowing the use of an internal certificate for authentication, and supports both wired and wireless networks. It can also isolate unapproved devices in a quarantine subnet and ensure that approved devices are updated before they can access the network. The other options, while related to network authentication, do not fully meet all the specified requirements.