Question 6 of 256
Changes were made to the ISE server while troubleshooting, and now all wireless certificate authentications are failing. Logs indicate an EAP failure. What is the most likely cause of the problem?
Correct Answer: A
The most likely cause of the problem is that EAP-TLS is not checked in the Allowed Protocols list. Since the logs indicate an EAP failure and EAP-TLS is a common protocol used for certificate-based authentication, not having it checked would prevent wireless certificate authentications from succeeding.
Question 7 of 256
The NAC Agent uses which port and protocol to send discovery packets to an ISE Policy Service Node?
Correct Answer: B
The NAC Agent uses UDP port 8905 to send discovery packets to an ISE Policy Service Node. This is because the Network Admission Control (NAC) uses the SWISS protocol, which is stateless and operates over the User Datagram Protocol (UDP).
Question 8 of 256
Which two conditions are valid when configuring ISE for posturing? (Choose two.)
Correct Answer: D, E
Question 9 of 256
Refer to the exhibit.
Which three statements about the given configuration are true? (Choose three.)
Which three statements about the given configuration are true? (Choose three.)
Correct Answer: B, C, F
Question 10 of 256
In AAA, what function does authentication perform?
Correct Answer: B