A network technician is setting up Extensible Authentication Protocol (EAP) but wants to ensure using the strongest authentication and widely supported type. Which type should the technician choose?

The technician should choose EAP-TLS because it utilizes Transport Layer Security to provide robust authentication for users and devices within a network. EAP-TLS is considered one of the most secure EAP methods available due to its reliance on certificates for mutual authentication. This means both the client and the server must present valid certificates, ensuring a higher level of security against attacks such as man-in-the-middle.

EAP-TLS is widely supported across various platforms and devices, making it an ideal choice for environments requiring strong security and interoperability. Its use of public key infrastructure (PKI) for authentication helps ensure that only authorized users can access the network, significantly enhancing the overall security posture of the organization.

While other options like PEAP, EAP-TTLS, and EAP-FAST do offer strong authentication mechanisms, they often rely on username/password combinations or do not provide the same level of mutual authentication as EAP-TLS. Hence, EAP-TLS stands out as the preferred method when strength and broad support are prioritized.