Cisco Exam 300-715 Topic 12 Question 85 Discussion

Actual exam question for Cisco's 300-715 exam

Question #: 85
Topic #: 12

An enterprise uses a separate PSN for each of its four remote sites. Recently, a user reported receiving an "EAP-TLS authentication failed" message when moving between remote sites. Which configuration must be applied on Cisco ISE?

AUse a third-party certificate on the network device.

BAdd the device to all PSN nodes in the deployment.

CRenew the expired certificate on one of the PSN.

DConfigure an authorization profile for the end users.

Show Suggested Answer

Suggested Answer: B

When using separate PSNs for different sites, the network device must be added to all PSN nodes in the deployment, so that the device can communicate with the appropriate PSN based on the location of the user1. If the device is not added to all PSN nodes, the user may encounter an EAP-TLS authentication failure when moving between sites, as the device may not be able to reach the PSN that issued the certificate2. The other options are not relevant for this scenario, as they do not address the issue of PSN communication.

by Omega at Apr 25, 2024, 12:01 AM

Limited Time Offer

25%

8 months ago

I think the issue might be related to the EAP-TLS authentication.

upvoted 0 times

Basilia

8 months ago

C) Renew the expired certificate on one of the PSN.

upvoted 0 times

...

Octavio

8 months ago

B) Add the device to all PSN nodes in the deployment.

upvoted 0 times

...