NSE 6 – FortiAuthenticator 6.1 — Question 12

Which two statements about the EAP-TTLS authentication method are true? (Choose two.)

Answer options

• A. Supports a port access control (wired) solution only
• B. Uses digital certificates only on the server side
• C. Uses mutual authentication
• D. Requires an EAP server certificate

Correct answer: B, D

Explanation

Option B is correct because EAP-TTLS utilizes digital certificates exclusively on the server side, while client-side authentication can use different methods. Option D is also correct since EAP-TTLS requires an EAP server certificate to establish a secure connection. Options A and C are incorrect because EAP-TTLS is not limited to wired solutions and does not necessarily require mutual authentication.