ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-430 All Questions

View all questions & answers for the 300-430 exam
Go to Exam

Exam 300-430 topic 1 question 139 discussion

Actual exam question from Cisco's 300-430
Question #: 139
Topic #: 1
[All 300-430 Questions]

A network is set up to support wired and wireless clients. Both types must authenticate using 802.1X before connecting to the network. Different types of client authentication must be separated on a Cisco ISE deployment. Which two configuration items achieve this task? (Choose two.)

  • A. device profiles
  • B. policy sets
  • C. separate networks
  • D. policy groups
  • E. policy results
Show Suggested Answer Hide Answer
Suggested Answer: BE 🗳️
by daeman at Sept. 9, 2022, 2:45 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
rrahim
6 days, 4 hours ago
Selected Answer: BD
Policy sets: These allow you to define different authentication and authorization policies based on conditions such as the type of network (wired or wireless). You can create separate policy sets for wired and wireless clients, each with its own authentication and authorization rules. Policy groups: These are used to group authentication and authorization policies together. You can create separate policy groups for wired and wireless clients, ensuring that each type of client is processed according to its specific requirements.
upvoted 1 times
rrahim
6 days, 4 hours ago
Why not the others? A. Device profiles: These are used to define the characteristics of devices on the network, not for separating authentication policies. C. Separate networks: While you could physically separate networks, this is not a configuration item within Cisco ISE. E. Policy results: These are the outcomes of policy evaluations, not a configuration item used to separate authentication types.
upvoted 1 times
...
...
Seba_o_s
3 months ago
Selected Answer: BD
The question is "different types of clients authentication must be separated". To accomplish different auth you must configure different policy, so D is the best answer along with B.
upvoted 2 times
...
[Removed]
4 months, 2 weeks ago
B. policy sets D. policy groups
upvoted 1 times
...
Zanjit500
8 months, 2 weeks ago
Sorry .. Disregard device profile since we're not talking about NADs. I guess policy results includes Authz and Authx results. I'll go B and E also.
upvoted 1 times
...
Zanjit500
8 months, 2 weeks ago
Id say A and B A. device profiles >> ie Network Access Device profiles. You Can create one for wired and one for wireless B. policy sets - FUndamental requirement C. separate networks - Irrelevent and controlled by AAA D. policy groups - No such thing. Identity groups, yes. E. policy results - No such thing. Authorization Results is what is needed.
upvoted 2 times
...
TJR72
9 months, 3 weeks ago
Selected Answer: BD
The two configuration items that can separate different types of client authentication in a Cisco ISE deployment are policy sets and policy groups. Policy sets define a set of rules and policies that are applied to a particular set of network devices, users, or groups. With policy sets, different types of devices can be configured with different types of authentication policies. Policy groups, on the other hand, allow different types of policies to be applied to different user groups or devices. This allows for more granular control over the network access policies applied to different groups of users or devices. The correct answers are B. policy sets and D. policy groups.
upvoted 2 times
...
cvndani
1 year, 5 months ago
Selected Answer: BE
B and E
upvoted 3 times
...
daeman
1 year, 5 months ago
Selected Answer: BE
B and E would be a better answer as the overall policy for wired and wireless will be different, as will the authorization result within each policy.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago