Question
A company uses AD and RADIUS to authenticate VPN and WiFi connections. The Chief Information Security Officer (CISO) initiates a project to extend a third-party
A company uses AD and RADIUS to authenticate VPN and WiFi connections. The Chief Information Security Officer (CISO) initiates a project to extend a third-party MFA solution to VPN. During the pilot phase, VPN users successfully get an MFA challenge, however they also get the challenge when connecting to WiFi, which is not desirable.
Which of the following BEST explains why users are getting the MFA challenge when using WiFi? A. In the RADIUS server, the proxy rule has not specified the NAS-Port-Type attribute that should be matched B. In the firewall, in the AAA configuration the IP address of the third-party MFA solution needs to be set as a secondary RADIUS server C. In the third-party MFA solution authentication properties need to be configured to recognize WiFi authentication requests D. In the WiFi configuration authentication needs to be changed to WPA2 Enterprise using EAP-TLS to support the configuration
PLEASE PROVIDE AN EXPLANATION FOR THE CORRECT OPTION CHOICE AS WELL AS EXPLANATIONS FOR WHY THE OTHER OPTIONS ARE NOT CORRECT FOR A THUMBS UP. THANK YOU
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access with AI-Powered Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started