Which two certificate enrollment methods can be completed without an RA and require no direct connection to a CA by the end entity? (Choose two.)
Click on the arrows to vote for the correct answer
A. B. C. D. E.CE.
The two certificate enrollment methods that can be completed without an RA and require no direct connection to a CA by the end entity are SCEP and manual cut and paste.
SCEP (Simple Certificate Enrollment Protocol) is a protocol used for securely enrolling digital certificates with a Certificate Authority (CA). It is a client-server protocol that enables secure issuance and renewal of digital certificates. SCEP is commonly used in enterprise networks, where a large number of devices need to be enrolled for digital certificates.
Manual cut and paste is another method of enrolling digital certificates without requiring an RA or a direct connection to a CA. In this method, the end entity manually copies the certificate request generated by the client application and pastes it into the CA's enrollment webpage. The CA then processes the request and issues the digital certificate.
TFTP (Trivial File Transfer Protocol) and enrollment profile with direct HTTP are not certificate enrollment methods, so they cannot be the correct answers.
PKCS#12 import/export is a method for securely transferring digital certificates and private keys between devices. It is not a certificate enrollment method, so it cannot be the correct answer.
In conclusion, the correct answers are A. SCEP and C. manual cut and paste.