• Description:220-301 A+ Hardware Technologies
• Passing Score:75%
• Practice Test - Number of questions:1 questions
• Simulation Test - Number of questions:1 questions
• Simulation Test Duration:41 minutes
• Has explanations:No

You are hired by IT department as a consultant. IT department is deciding on a security solution for their new WLAN, and a PPTP VPN is their primary consideration since it is included with both server and desktop operating systems. While the 128-bit encryption of Microsoft's MPPE is considered strong enough to adhere to corporate security policy, IT department is concerned about security holes in MS-CHAPv2 authentication. Which three of the following would you advise IT department about applying MS-CHAPv2 authentication in a PPTP VPN? (Choose three)

Answer(s)

1. MS-CHAPv2 is subject to offline dictionary attacks.
2. MS-CHAPv2 is only secure when combined with MAC filters.
3. MS-CHAPv2 is compliant with WPA-Personal, but not WPA2-Enterprise.
4. MS-CHAPv2 can be replaced with EAP-TLS as the authentication mechanism for PPTP.
5. MS-CHAPv2 uses anonymousDiffie-Hellman authentication, and is therefore secure.
6. MS-CHAPv2 is appropriate for WLAN security when used inside a TLS-encrypted tunnel.

MS-CHAPv2 is subject to offline dictionary attacks.

MS-CHAPv2 can be replaced with EAP-TLS as the authentication mechanism for PPTP.

MS-CHAPv2 is appropriate for WLAN security when used inside a TLS-encrypted tunnel.