Refer to the exhibit. Which two configurations are needed on a catalyst switch to add it as a network access device in a Cisco ISE that is being used for 802.1X authentications? (Choose two.)
A.
radius server ISE1 address ipv4 192.168.255.17 auth-port 1645 acct-port 1646 key 7 0607542D5F4A0213034C1E0A1F0F2E2122733F3429000D12055A5A52
B.
tacacs server ISE1 address ipv4 192.168.255.15 auth-port 1645 acct-port 1646 key 7 0607542D5F4A0213034C1E0A1F0F2E2122733F3429000D12055A5A52
C.
radius server ISE1 address ipv4 192.168.255.19 auth-port 1645 acct-port 1646 key 7 0607542D5F4A0213034C1E0A1F0F2E2122733F3429000D12055A5A52
D.
tacacs server ISE1 address ipv4 192.168.255.18 auth-port 1645 acct-port 1646 key 7 0607542D5F4A0213034C1E0A1F0F2E2122733F3429000D12055A5A52
E.
radius server ISE1 address ipv4 192.168.255.16 auth-port 1645 acct-port 1646 key 7 0607542D5F4A0213034C1E0A1F0F2E2122733F3429000D12055A5A52
I think so too. Tacacs commands are wrong for sure, but also we need to specify radius server for PSNs only, as the are those which provide 802.1x authN.
Sorry been banging my head on my desk for this one...I used chat gpt. Does this make any sense to you?
The correct answers are A and E.
To add a switch as a Network Access Device (NAD) in Cisco ISE for 802.1X authentications, the switch must be configured to communicate with ISE using either RADIUS or TACACS+. Specifically, the switch must be configured with the IP address of the ISE server, the authentication port, the accounting port, and the shared secret.
In the exhibit, the IP address of the ISE server is 192.168.255.16, which is the IP address of the Monitoring and Troubleshooting (MnT) node. Therefore, options B, C, and D are incorrect as they do not have the correct IP address for the ISE server.
Option A has the correct IP address for the ISE server and specifies RADIUS as the protocol, which is used for 802.1X authentications. Option E also has the correct IP address for the ISE server and specifies RADIUS as the protocol.
Therefore, the correct answers are A and E.
My mistake...
So we must point Radius settings to the PSN only.
RADIUS Server Configuration on the Switch
Configure the switch to interact with Cisco ISE as the RADIUS source server by entering the following commands:
!
radius-server <ISE Name>
! ISE Name is the name of the ISE PSN
address ipv4 <ip address> auth-port 1812 acct-port 1813
! IP address is the address of the PSN.
upvoted 1 times
...
...
This section is not available anymore. Please use the main Exam Page.300-715 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
kornalt
Highly Voted 1 year, 9 months agoYmerG
1 year, 7 months agoZappBrannigan
Most Recent 10 months, 2 weeks agojohndelorien
1 year, 4 months agojohndelorien
1 year, 4 months agomatan24
1 year, 6 months agoCnoteone
1 year, 7 months agoCnoteone
1 year, 7 months ago