Valid CNX-001 Dumps shared by EduDump.com for Helping Passing CNX-001 Exam! EduDump.com now offer the newest CNX-001 exam dumps, the EduDump.com CNX-001 exam questions have been updated and answers have been corrected get the newest EduDump.com CNX-001 dumps with Test Engine here:
A network load balancer is not correctly validating a client TLS certificate. The network architect needs to validate the certificate installed on the load balancer before progressing. Which of the following commands should the architect use to confirm whether the private key and certificate match?
Correct Answer: D
Comprehensive and Detailed Explanation From Exact Extract: To verify that the certificate and the private key match, one can extract the modulus from both files and compare their hash values. The correct syntax involves using openssl x509 to extract the modulus from the certificate, and openssl rsa to extract the modulus from the private key, followed by an MD5 hash to ensure they match. Relevant Extract from CompTIA CloudNetX CNX-001 Study Guide - under "TLS/SSL Certificate Validation and Troubleshooting": "To verify that the private key and certificate match, compare the modulus values. A mismatch results in failed TLS handshakes." Other options: * A & C: Incorrect syntax (openssl-list and openssl-rsa are not valid commands). * B: The commands shown are used to verify CSRs, not matching keys.
