Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location PL
Mob_nav_barsMENU

Cisco Exam 300-715 Topic 2 Question 90 Discussion

Actual exam question for Cisco's 300-715 exam
Question #: 90
Topic #: 2
[All 300-715 Questions]

An enterprise uses a separate PSN for each of its four remote sites. Recently, a user reported receiving an "EAP-TLS authentication failed" message when moving between remote sites. Which configuration must be applied on Cisco ISE?

Show Suggested Answer Hide Answer
Suggested Answer: B

When using separate PSNs for different sites, the network device must be added to all PSN nodes in the deployment, so that the device can communicate with the appropriate PSN based on the location of the user1. If the device is not added to all PSN nodes, the user may encounter an EAP-TLS authentication failure when moving between sites, as the device may not be able to reach the PSN that issued the certificate2. The other options are not relevant for this scenario, as they do not address the issue of PSN communication.


by Gerald at Jun 24, 2024, 05:55 PM

Limited Time Offer

25%

Off

Get Premium 300-715 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel
Eliseo
3 months ago
Ah, the joys of enterprise networking. I'm sure the correct answer is hidden somewhere in a Cisco manual the size of a phone book.
upvoted 0 times
Shaun
2 months ago
C) Renew the expired certificate on one of the PSN.
upvoted 0 times
...
Shaun
2 months ago
B) Add the device to all PSN nodes in the deployment.
upvoted 0 times
...
...
Pa
3 months ago
I think both options could potentially solve the issue, but I would go with C) to address the expired certificate first.
upvoted 0 times
...
Ivan
3 months ago
This reminds me of that time I tried to connect to the corporate network from my toaster. Needless to say, the 'EAP-TLS authentication failed' message wasn't the only problem I had that day.
upvoted 0 times
...
Keith
3 months ago
I bet the answer is D. Configuring an authorization profile for the end users sounds like the logical solution here.
upvoted 0 times
...
Dorcas
3 months ago
Hmm, I'm not sure. Maybe C is the way to go. Renewing the expired certificate on one of the PSN could be the fix.
upvoted 0 times
Wenona
2 months ago
I see your point, but I still think C is the best choice. Renewing the expired certificate on one of the PSN seems like the most logical step.
upvoted 0 times
...
Marcelle
2 months ago
I'm not sure about that. D might be the way to go. Configuring an authorization profile for the end users could help.
upvoted 0 times
...
Theodora
2 months ago
I agree with you, A could also work. Using a third-party certificate on the network device could be the solution.
upvoted 0 times
...
Denny
2 months ago
I think B is the best option. Adding the device to all PSN nodes might solve the issue.
upvoted 0 times
...
...
Terina
3 months ago
But wouldn't adding the device to all PSN nodes help in ensuring seamless authentication across all sites?
upvoted 0 times
...
Willodean
3 months ago
I think the correct answer is B. Adding the device to all PSN nodes in the deployment should resolve the issue with the 'EAP-TLS authentication failed' message when moving between remote sites.
upvoted 0 times
Apolonia
2 months ago
That makes sense, it would ensure the user can authenticate properly at any remote site.
upvoted 0 times
...
Joanna
2 months ago
B) Add the device to all PSN nodes in the deployment.
upvoted 0 times
...
...
Barrett
3 months ago
I disagree, I believe the correct answer is C) Renew the expired certificate on one of the PSN.
upvoted 0 times
...
Terina
3 months ago
I think the answer is B) Add the device to all PSN nodes in the deployment.
upvoted 0 times
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77