Exam CS0-002 topic 1 question 53 discussion

This is my train of thought for this question A- Radius only encrypts passwords B- TACAS+ is Cisco proprietary, this question doesn't say they're using Cisco products C- MAC address could be spoofed to gain access to the network D- WPA2 is difficult to crack Between C and D, D provides the most security; cracking a WPA2 handshake would require an extremely beefy system and take a long time. On the other hand, MAC spoofing is very easy to accomplish

WPA2 is secure ? anymore?

Going with D, we are talking confidentiality.

I going to B. Tacas encrypt all data, but radius encrypt only password !!! https://www.geeksforgeeks.org/difference-between-tacacs-and-radius/

It has got to be A, this would give most protection. Chances are that WPA2 is the high risk element!

chat GPT says D

please correct me if I am wrong, but wouldn't implementing RADIUS ensure only those with AD accounts could access the WiFi hence Confidentiality is improved?

Weak WPA/WPA2 passphrases can be recovered via brute force password cracking enterprise networks should use RADIUS authentication, which is not susceptible to this attack.

This is terrible question. I would say best answer is D as well.

I think D is the correct answer. Radius is used in conjunction with NAC for user authentication. We still need to think of how to encrypt users' data.

TACACS (Terminal Access Controller Access Control System) is a security protocol that provides centralized validation of users who are attempting to gain access to a router or NAS.

I thought it would be tacacs because it provides remote authentication for network access which would protect data. But maybe D is correct since im unsure, we need an expert here.

D is the only one specific to Wireless Security