CISSP Practice question #45

We have found some older systems on our network using PAP, why would we want to migrate away from using that?
A: Credentials are sent in plaintext over the network.
B: It uses SSL.
C: It uses PPP.
D: The client and server need to know a plaintext shared secret. It is stored in plaintext on the server, but never sent over the network.

CBK 5: Identity and Access Management
Source: practice tests


A: PAP (Password Authentication Protocol): One of the oldest authentication protocols, no longer secure. Credentials are sent over the network in plain text. Authentication is initialized by client/user by sending packet with credentials (username and password) at the beginning of the connection.

show less

IT & Cyber Security trainer
Sharing my knowledge, to help you reach your IT certification goals.
CISSP, C|EH, PMP, CCNP, CompTIA Security+, SCP, CCNA-Security, CCNA, et. Al.

You may also like