From the course: CompTIA SecurityX (CAS-005) Cert Prep

Unlock this course with a free trial

Join today to access over 24,300 courses taught by industry experts.

TLS and PKI issues

TLS and PKI issues

- In this lesson, we're going to look at issues in implementing Transport Layer Security and Public Key Infrastructure. On the Security X Exam, they're going to test your understanding of main configuration errors and troubleshooting with TLS and PKI. So, for example, incorrect certificate configuration. They're incorrectly configured, like expired or invalid certificates, so obviously, make sure they're valid, not expired and correctly installed. There may also be what's called Cipher Suite Mismatch, where the client and the server don't support the same common set of cipher suites. Not only should they support the same common set, but you want the client and the server to support the most recent and robust suite. So if your server's supporting TLS 1.3, let's upgrade those browsers or those clients to also support TLS 1.3, so that TLS version mismatches as well. And then misconfigured intermediate certificates. If you're using intermediate certificates as part of the certificate…

Contents