CISSP Practice question #45

We have found some older systems on our network using PAP, why would we want to migrate away from using that?
A: Credentials are sent in plaintext over the network.
B: It uses SSL.
C: It uses PPP.
D: The client and server need to know a plaintext shared secret. It is stored in plaintext on the server, but never sent over the network.

CBK 5: Identity and Access Management
Source: practice tests


A: PAP (Password Authentication Protocol): One of the oldest authentication protocols, no longer secure. Credentials are sent over the network in plain text. Authentication is initialized by client/user by sending packet with credentials (username and password) at the beginning of the connection.

show less

IT security trainer.
Sharing my knowledge, to help you reach your IT certification goals.
CISSP, C|EH, PMP, CCNP, CompTIA Security+, SCP, CCNA-Security, CCNA, et. Al.

You may also like