A company wants to implement 802.1X authentication to authenticate client devices on AOS-Switch ports. The company has a RADIUS server that uses PEAP
MSCHAP-v2 for the authentication method. What is one task administrators should complete before they implement the plan?
Before implementing 802.1X authentication using PEAP with MSCHAP-v2, administrators must ensure that client devices trust the RADIUS server certificate. This is crucial because PEAP relies on server certificates to create a secure TLS tunnel for the authentication process, protecting the credentials exchanged during authentication.
I believe the answer is D. EAP/MS-Chap V2 work by installing a certificate on the clear pass server. You can use imaging tools to make sure the clients trust the CP cert or auto enroll it.
yes, it is D