Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Cisco 300-715 Exam - Topic 9 Question 94 Discussion

Actual exam question for Cisco's 300-715 exam
Question #: 94
Topic #: 9
[All 300-715 Questions]

A network security administrator needs a web authentication configuration when a guest user connects to the network with a wireless connection using these steps:

. An initial MAB request is sent to the Cisco ISE node.

. Cisco ISE responds with a URL redirection authorization profile if the user's MAC address is unknown in the endpoint identity store.

. The URL redirection presents the user with an AUP acceptance page when the user attempts to go to any URL.

Which authentication must the administrator configure on Cisco ISE?

Show Suggested Answer Hide Answer
Suggested Answer: D

Central Web Authentication (CWA) is a feature that allows the network access device (NAD) to redirect the web traffic of a guest user to a web portal hosted by Cisco ISE1. The NAD acts as a proxy between the guest user and the ISE node, and performs the authentication and authorization based on the RADIUS attributes returned by ISE1. To configure CWA on ISE, the administrator must create an authorization profile that contains the URL redirection attribute and assign it to the guest user1. The other options are not correct because they do not use CWA. Device registration WebAuth is a feature that allows users to register their devices on ISE before they can access the network2. WLC with local WebAuth is a feature that allows the wireless LAN controller (WLC) to host the web portal and authenticate the guest user locally3. Wired NAD with local WebAuth is a feature that allows the switch to host the web portal and authenticate the guest user locally


by Adell at Aug 04, 2024, 12:39 AM

Limited Time Offer

25%

Off

Get Premium 300-715 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Josephine
4 months ago
Local WebAuth seems simpler, but I guess it depends on the network size.
upvoted 0 times
...
Brynn
4 months ago
Wait, why do we need central WebAuth? Sounds complicated.
upvoted 0 times
...
Brynn
4 months ago
I agree, central WebAuth is the way to go here!
upvoted 0 times
...
Beckie
5 months ago
I think device registration WebAuth could work too, but not sure.
upvoted 0 times
...
Quentin
5 months ago
Definitely need the NAD with central WebAuth for this setup.
upvoted 0 times
...
Luisa
5 months ago
I feel confused about the differences between local and central WebAuth. I might lean towards A, but I need to double-check my notes.
upvoted 0 times
...
Refugia
5 months ago
I practiced a similar question, and I recall that MAB requests usually lead to a central WebAuth setup. So, D seems likely.
upvoted 0 times
...
Caitlin
5 months ago
I'm not entirely sure, but I remember something about local WebAuth being used in different scenarios. Maybe B or C?
upvoted 0 times
...
Jaime
6 months ago
I think the answer might be D, NAD with central WebAuth, since it involves redirecting users to an AUP page.
upvoted 0 times
...
Viva
6 months ago
That makes sense to me. The user is presented with an AUP acceptance page, which points to a web-based authentication process.
upvoted 0 times
...
Lucy
6 months ago
I'm pretty sure the answer is device registration WebAuth, since the initial MAB request is sent to Cisco ISE and it responds with a URL redirection.
upvoted 0 times
...
Odette
6 months ago
Okay, let's think this through step-by-step. The key is that the user is connecting wirelessly and the administrator needs a web authentication configuration.
upvoted 0 times
...
Wilburn
6 months ago
This question seems straightforward, but I want to make sure I understand the details correctly before answering.
upvoted 0 times
...
Edison
6 months ago
Okay, let me think this through. I know LAG is used for link aggregation, so I'm guessing the Virtual Distributed Switch is the right answer to enable that functionality in VMware. I'll go with A.
upvoted 0 times
...
Rikki
6 months ago
I feel like RQL is not the maximum allowable percent defective. I might go with AQL, but I was a bit confused during the lecture.
upvoted 0 times
...
Oneida
2 years ago
I see your point, Frank. However, I think NAD with central WebAuth would be more efficient in managing authentication for a large network.
upvoted 0 times
...
Frank
2 years ago
But wouldn't using device registration WebAuth provide better security for guest users connecting to the network?
upvoted 0 times
...
Isabella
2 years ago
I disagree, I believe the correct authentication to configure is NAD with central WebAuth.
upvoted 0 times
...
Elbert
2 years ago
This question is a real head-scratcher, but I'm going to go with option D. Gotta love that central WebAuth, am I right?
upvoted 0 times
...
Frank
2 years ago
I think the administrator should configure device registration WebAuth on Cisco ISE.
upvoted 0 times
...
Paola
2 years ago
Option C is my pick. Wired NAD with local WebAuth seems like the most straightforward approach here.
upvoted 0 times
Quentin
2 years ago
I also believe that option C is the most straightforward approach for this scenario.
upvoted 0 times
...
Ceola
2 years ago
Agreed, using wired NAD with local WebAuth seems like the most direct solution.
upvoted 0 times
...
Cristy
2 years ago
I think option C is the best choice.
upvoted 0 times
...
...
Nathan
2 years ago
Ha! This question is a piece of cake. The answer is clearly D. NAD with central WebAuth is the way to go, my friends.
upvoted 0 times
Gracie
1 year ago
I'm confident it's D) NAD with central WebAuth.
upvoted 0 times
...
Kenneth
2 years ago
Actually, I'm pretty sure it's C) wired NAD with local WebAuth.
upvoted 0 times
...
Tonette
2 years ago
No, I believe it is B) WLC with local WebAuth.
upvoted 0 times
...
Remedios
2 years ago
I think the answer is A) device registration WebAuth.
upvoted 0 times
...
...
Joni
2 years ago
I'm gonna go with option B. WLC with local WebAuth seems like a logical solution for this scenario.
upvoted 0 times
Ardella
2 years ago
I agree, WLC with local WebAuth provides the necessary steps for web authentication when a guest user connects to the network.
upvoted 0 times
...
Doretha
2 years ago
Option B) WLC with local WebAuth is a good choice. It allows for web authentication configuration for guest users.
upvoted 0 times
...
...
Lashawna
2 years ago
I don't know, but option A sounds like it might work. Device registration WebAuth could be a valid choice here.
upvoted 0 times
Queenie
2 years ago
I agree, device registration WebAuth seems like the best choice for this configuration.
upvoted 0 times
...
Hui
2 years ago
Yeah, that sounds like it could work for this scenario.
upvoted 0 times
...
Marya
2 years ago
I think option A, device registration WebAuth, is the way to go.
upvoted 0 times
...
...
Derrick
2 years ago
Option D sounds right. NAD with central WebAuth seems to be the authentication method the administrator needs to configure in Cisco ISE.
upvoted 0 times
Kimberlie
2 years ago
Yes, central WebAuth would ensure that all guest users are properly authenticated before accessing the network resources.
upvoted 0 times
...
Tiera
2 years ago
It's important to have a secure authentication method in place, especially for guest users connecting to the network.
upvoted 0 times
...
Diego
2 years ago
I agree, central WebAuth would provide a more centralized and secure authentication process.
upvoted 0 times
...
Dacia
2 years ago
Option D sounds right. NAD with central WebAuth seems to be the authentication method the administrator needs to configure in Cisco ISE.
upvoted 0 times
...
...

Save Cancel