Refer to the exhibit. A client requests a new SSID that will use web-based authentication and external RADIUS servers. Which Layer 2 security mode must be selected?
Compatibility between L2 and L3 security methods:
Static WEP (L2 security) + web authentication (L3 security) = valid
WPA + WPA2 + web authentication = invalid
none + web authentication = valid
802.1x + web authentication = invalid
To configure the WLC for web authentication:
"Click the Layer 2 tab and set the security to None"
https://www.cisco.com/c/en/us/support/docs/wireless-mobility/wlan-security/71881-ext-web-auth-wlc.html#:~:text=Click%20the%20Layer%202%20tab%20and%20set%20the%20security%20to%C2%A0None
https://www.cisco.com/c/en/us/support/docs/wireless/4400-series-wireless-lan-controllers/106082-wlc-compatibility-matrix.html#:~:text=are%20more%20secure).-,Wireless%20LAN%20Controller%20Layer%202%20%E2%80%93%20Layer%203%20Security%20Compatibility%20Matrix,-When%20you%20configure
None: When using web-based authentication and external RADIUS servers, the Layer 2 security mode should be set to "None" or "Open." This allows clients to associate with the SSID without any Layer 2 encryption or authentication, as authentication and encryption are handled at Layer 3 (web-based authentication) and by the RADIUS server, respectively.
B is correct
the SSID will be open and have no password, when you try to connect to the SSID you will be directed to a WEB interface where you do the authentication on it based on many options
the answer is "B. NONE" ref: https://www.cisco.com/c/en/us/support/docs/wireless/catalyst-9800-series-wireless-controllers/213920-central-web-authentication-cwa-on-cata.html
maybe "B" is right because || from OCG p.572
(Open Authentication will be used because the None method has been selected)
based on all description that mention AAA , does not require encryption or special security at Layer 2. Instead, it relies on a web page to authenticate users and typically uses RADIUS servers for the actual authentication process. So, for this setup, no Layer 2 security is necessary.
WPA2 (Wi-Fi Protected Access 2) provides strong security for wireless networks.
WPAS (Wi-Fi Protected Access with Pre-Shared Key) is a variation of WPA that uses pre-shared keys for authentication
To be fare - the Lack of "WPA2 + WPAS" not showing up in the image exhibit - really makes me doubt this as a choice....... "WPA2 + WPA3" shows in the image instead and not listed"
WPAS - Captive Portal - authenticate through Captive Portal using PSK (Web Based)
upvoted 1 times
...
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
AbdullahMohammad251
3 months, 1 week agoMegon
5 months, 3 weeks agoShri_Fcb10
7 months, 2 weeks ago[Removed]
7 months, 3 weeks agoIgorLVG
8 months agomasrur
8 months, 1 week agoAdalberto
8 months, 2 weeks agoEAC84
8 months, 4 weeks agoshefo1
9 months agoRickAO76
9 months agoRickAO76
8 months, 3 weeks agoRickAO76
8 months, 3 weeks ago