Authenticatin Wireless Clients

8 important questions on Authenticatin Wireless Clients

What two authentication choices were supported by the original 802.11 standard?

1. Open Authentication
2. WEP

What is Open Authentication?

It only requires an 802.11 authentication request from the client. No credentials or passwords are needed.

Which three Wi-Fi Protected Access, or WPA versions are there and which client authentication modes do they support?

There are 3 versions, WPA1, WPA2 and WPA3.
They all support 2 authentication modes, Personal or Pre-Shared Key and Enterprise mode or 802.1X.
  • Higher grades + faster learning
  • Never study anything twice
  • 100% sure, 100% understanding
Discover Study Smart

WPA1 and WPA2 Personal have a weakness, what weakness and how is it addressed in WPA3 Personal?

The four way handshake that the clients uses to construct and exchange encryption key material can be eavesdropped.
In WPA3 this is strengthened by a method called Simultaneous Authentication of Equals (SAE).

How do clients assiocate with an ap when the SSID is configured for EAP authentication?

It authenticates using Open Authentication, after which the EAP/802.1X authentication process is started?

In an 802.1X authentication process there are 3 entities, which 3?

1. Supplicant (Client device requesting access)
2. Authenticator (Network device providing network access. Usually a WLC)
3. Authentication Server AS (Device that permits or denies client based on credentials and a user database. Usually Radius server)

Web Authentication can present the user with a web page, for example to accept an Acceptable Use Policy (AUP).
This can be done by using Local Web Authentication (LWA) on the WLC, which 5 LWA modes are possible?

1. LWA with internal database on the WLC
2. LWA with external database on a Radius or LDAP server
3. LWA with an external redirect after authentication
4. LWA with an external splash page redirect, using internal DB
5. LWA with passthrough, requiring user acknowledgement.

In larger environments it might not be feasible to use LWA because of the scale. What are the other option?

Using a central server which is called Central Web Authentication (CWA) with an external Radius server.

The question on the page originate from the summary of the following study material:

  • A unique study and practice tool
  • Never study anything twice again
  • Get the grades you hope for
  • 100% sure, 100% understanding
Remember faster, study better. Scientifically proven.
Trustpilot Logo