Please solve both Questions carefully.. Thanks 37- All users are unable to conne
ID: 3906733 • Letter: P
Question
Please solve both Questions carefully.. Thanks
37- All users are unable to connect to the company wireless network on a Monday morning, even through it was working on the previous Friday. The company implements 802.1x EAP-_EAP-MSCHAPv2, and users receive an expired certificate error on their devices. Which of the following will MOST likely resolve this issue? A) Renewing certificate on the authentication server. B) Issuing and pushing new certificate to every user. C) Updating the CA certificate on the wireless controller. D) Installing a new certificate on the access points. 38- A recent online password audit has identified that passwords are at risk to brute force attacks. Which of the following controls would BEST mitigate this risk? A) Account reviews B) Account lockouts C) Password length D) Password complexityExplanation / Answer
37 Ans C Updating the CA certificate on the wireless controller.
When we update Certificate authorifty certifictae we can ask for autoenrollment all our devices thus renewing all devices certificate
38 Ans b Account lockouts
Account lockout is still the best way to prevent brute force attack where account is locked out after three unsuccessful attempts which can be unlocked only by administrator. Disadvantage of this method is increased work on administrator as many accounts which are tried to be break in gets locked in but still it is the best method. As though number of techniques are been devised for protecting password such as encrypted password, increasing length , asking for strong password but still they can be under attack so best is to lock after three attempts.