Cyber Monday 2024! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Cisco Exam 300-715 Topic 9 Question 94 Discussion

Actual exam question for Cisco's 300-715 exam
Question #: 94
Topic #: 9
[All 300-715 Questions]

A network security administrator needs a web authentication configuration when a guest user connects to the network with a wireless connection using these steps:

. An initial MAB request is sent to the Cisco ISE node.

. Cisco ISE responds with a URL redirection authorization profile if the user's MAC address is unknown in the endpoint identity store.

. The URL redirection presents the user with an AUP acceptance page when the user attempts to go to any URL.

Which authentication must the administrator configure on Cisco ISE?

Show Suggested Answer Hide Answer
Suggested Answer: D

Central Web Authentication (CWA) is a feature that allows the network access device (NAD) to redirect the web traffic of a guest user to a web portal hosted by Cisco ISE1. The NAD acts as a proxy between the guest user and the ISE node, and performs the authentication and authorization based on the RADIUS attributes returned by ISE1. To configure CWA on ISE, the administrator must create an authorization profile that contains the URL redirection attribute and assign it to the guest user1. The other options are not correct because they do not use CWA. Device registration WebAuth is a feature that allows users to register their devices on ISE before they can access the network2. WLC with local WebAuth is a feature that allows the wireless LAN controller (WLC) to host the web portal and authenticate the guest user locally3. Wired NAD with local WebAuth is a feature that allows the switch to host the web portal and authenticate the guest user locally


Contribute your Thoughts:

Oneida
3 months ago
I see your point, Frank. However, I think NAD with central WebAuth would be more efficient in managing authentication for a large network.
upvoted 0 times
...
Frank
3 months ago
But wouldn't using device registration WebAuth provide better security for guest users connecting to the network?
upvoted 0 times
...
Isabella
3 months ago
I disagree, I believe the correct authentication to configure is NAD with central WebAuth.
upvoted 0 times
...
Elbert
3 months ago
This question is a real head-scratcher, but I'm going to go with option D. Gotta love that central WebAuth, am I right?
upvoted 0 times
...
Frank
4 months ago
I think the administrator should configure device registration WebAuth on Cisco ISE.
upvoted 0 times
...
Paola
4 months ago
Option C is my pick. Wired NAD with local WebAuth seems like the most straightforward approach here.
upvoted 0 times
Quentin
2 months ago
I also believe that option C is the most straightforward approach for this scenario.
upvoted 0 times
...
Ceola
3 months ago
Agreed, using wired NAD with local WebAuth seems like the most direct solution.
upvoted 0 times
...
Cristy
3 months ago
I think option C is the best choice.
upvoted 0 times
...
...
Nathan
4 months ago
Ha! This question is a piece of cake. The answer is clearly D. NAD with central WebAuth is the way to go, my friends.
upvoted 0 times
Gracie
2 months ago
I'm confident it's D) NAD with central WebAuth.
upvoted 0 times
...
Kenneth
2 months ago
Actually, I'm pretty sure it's C) wired NAD with local WebAuth.
upvoted 0 times
...
Tonette
3 months ago
No, I believe it is B) WLC with local WebAuth.
upvoted 0 times
...
Remedios
3 months ago
I think the answer is A) device registration WebAuth.
upvoted 0 times
...
...
Joni
4 months ago
I'm gonna go with option B. WLC with local WebAuth seems like a logical solution for this scenario.
upvoted 0 times
Ardella
3 months ago
I agree, WLC with local WebAuth provides the necessary steps for web authentication when a guest user connects to the network.
upvoted 0 times
...
Doretha
4 months ago
Option B) WLC with local WebAuth is a good choice. It allows for web authentication configuration for guest users.
upvoted 0 times
...
...
Lashawna
4 months ago
I don't know, but option A sounds like it might work. Device registration WebAuth could be a valid choice here.
upvoted 0 times
Queenie
3 months ago
I agree, device registration WebAuth seems like the best choice for this configuration.
upvoted 0 times
...
Hui
3 months ago
Yeah, that sounds like it could work for this scenario.
upvoted 0 times
...
Marya
4 months ago
I think option A, device registration WebAuth, is the way to go.
upvoted 0 times
...
...
Derrick
4 months ago
Option D sounds right. NAD with central WebAuth seems to be the authentication method the administrator needs to configure in Cisco ISE.
upvoted 0 times
Kimberlie
3 months ago
Yes, central WebAuth would ensure that all guest users are properly authenticated before accessing the network resources.
upvoted 0 times
...
Tiera
4 months ago
It's important to have a secure authentication method in place, especially for guest users connecting to the network.
upvoted 0 times
...
Diego
4 months ago
I agree, central WebAuth would provide a more centralized and secure authentication process.
upvoted 0 times
...
Dacia
4 months ago
Option D sounds right. NAD with central WebAuth seems to be the authentication method the administrator needs to configure in Cisco ISE.
upvoted 0 times
...
...

Save Cancel
az-700  pass4success  az-104  200-301  200-201  cissp  350-401  350-201  350-501  350-601  350-801  350-901  az-720  az-305  pl-300  

Warning: Cannot modify header information - headers already sent by (output started at /pass.php:70) in /pass.php on line 77