CWNP Exam CWSP-208 Topic 1 Question 4 Discussion

Actual exam question for CWNP's CWSP-208 exam

Question #: 4
Topic #: 1

Given: ABC Corporation is evaluating the security solution for their existing WLAN. Two of their supported solutions include a PPTP VPN and 802.1X/LEAP. They have used PPTP VPNs because of their wide support in server and desktop operating systems. While both PPTP and LEAP adhere to the minimum requirements of the corporate security policy, some individuals have raised concerns about MS-CHAPv2 (and similar) authentication and the known fact that MS-CHAPv2 has proven vulnerable in improper implementations.

As a consultant, what do you tell ABC Corporation about implementing MS-CHAPv2 authentication? (Choose 2)

AMS-CHAPv2 is compliant with WPA-Personal, but not WPA2-Enterprise.

BMS-CHAPv2 is subject to offline dictionary attacks.

CLEAP's use of MS-CHAPv2 is only secure when combined with WEP.

DMS-CHAPv2 is only appropriate for WLAN security when used inside a TLS-encrypted tunnel.

EMS-CHAPv2 uses AES authentication, and is therefore secure.

FWhen implemented with AES-CCMP encryption, MS-CHAPv2 is very secure.

Show Suggested Answer

Suggested Answer: B, D

by Oliva at Jul 08, 2025, 12:24 PM

Limited Time Offer

25%

Off

Get Premium CWSP-208 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Jovita

8 days ago

D) MS-CHAPv2 is only appropriate for WLAN security when used inside a TLS-encrypted tunnel. This helps mitigate the security risks associated with MS-CHAPv2.

upvoted 0 times

...