ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
The security team is configuring three standalone wireless access points in a small R&D lab that has no directory or RADIUS services yet. Until an 802.1X solution is rolled out next quarter, only eight corporate-owned laptops should be able to join the network, and any lost laptop must be blocked quickly without changing credentials on the remaining devices. Which approach best meets these requirements?
Enable MAC address filtering on the access points and whitelist the eight authorized laptop MAC addresses.
Disable SSID broadcast so that only known users can discover the network.
Configure WPA2-Enterprise with EAP-TLS certificates on every laptop and access point.
Configure a unique WPA2 pre-shared key (PSK) for all laptops and rotate the key weekly.
Populating each access point with a whitelist of the eight laptops' MAC addresses enforces device-level authentication without needing backend services. If a laptop is lost, the administrator can simply remove that MAC address to revoke its access without affecting the other devices. WPA2-Enterprise with EAP-TLS would meet the goal but cannot be implemented until a RADIUS infrastructure exists. A single shared WPA2-PSK does not allow per-device revocation unless the key is changed for every client, creating more overhead. Disabling SSID broadcast only hides the network name; it offers no real authentication or revocation capability.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is MAC address filtering?
Open an interactive chat with Bash
Why can't WPA2-Enterprise with EAP-TLS be used without a RADIUS server?
Open an interactive chat with Bash
How does disabling SSID broadcast impact network security?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Access Controls
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .