LPIC-2 Exam 202 (Linux Engineer) — Question 79

Which of the following statements are true regarding Server Name Indication (SNI)? (Choose two.)

Answer options

• A. It supports transparent failover of TLS sessions from one web server to another.
• B. It allows multiple SSL/TLS secured virtual HTTP hosts to coexist on the same IP address.
• C. It enables HTTP servers to update the DNS of their virtual hosts' names using the X 509 certificates of the virtual hosts.
• D. It provides a list of available virtual hosts to the client during the TLS handshake.
• E. It submits the host name of the requested URL during the TLS handshake.

Correct answer: B, E

Explanation

The correct answers are B and E. B is correct because SNI allows multiple SSL/TLS certificates to be served from a single IP address, enabling different domains to coexist. E is also accurate as SNI sends the hostname to the server during the TLS handshake, allowing the server to present the appropriate certificate. Options A, C, and D are incorrect as they do not accurately describe the functionality of SNI.