VPN Authentication Methods Flashcards Preview

70-411 > VPN Authentication Methods > Flashcards

Flashcards in VPN Authentication Methods Deck (6):
1

EAP-TLS

Used with Smart cards of digital certificates

Can only be used when RRAS is configured for RADIUS authentication, or if the server is domain joined

2

MS-CHAPv2

Provides Mutual Authentication

Allows for encryption of authentication process and session

3

Machine Certificate Authentication

Uses pre-installed certificates that correspond with machines as opposed to users

Requires certificate with Server Authentication EKU property on RRAS server

Requires certificate with Client Authentication EKU property on each connecting client that is stored in Local Computer / Personal

4

CHAP

Authentication is encrypted via MD5 hashing

Session data is not encrypted

5

SPAP

Included for down-level support

Basic encryption for authentication that can be trivially decrypted via automated techniques

Not recommended

6

PAP

No Encryption for Session Data or Authentication