ExamTopics Logo
Mail Us[email protected]
Menu
Juniper Discussions
exam questions

Exam JN0-648 All Questions

View all questions & answers for the JN0-648 exam
Go to Exam

Exam JN0-648 topic 1 question 18 discussion

Actual exam question from Juniper's JN0-648
Question #: 18
Topic #: 1
[All JN0-648 Questions]

You are using 802.1X in your access network consisting of EX Series switches. You recently had a failure with your RADIUS server which resulted in authenticating client devices being denied access to the network. You want to change this behavior so that authenticating clients are directed to a remediation
VLAN.
Which RADIUS server failback setting satisfies this requirement?

  • A. permit
  • B. move
  • C. sustain
  • D. deny
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by rrahim at Dec. 22, 2020, 11:48 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
rrahim
Highly Voted 4 years, 4 months ago
https://www.juniper.net/documentation/en_US/junos/topics/topic-map/radius-server-configuration-ex-series-cli.html#id-configuring-radius-server-fail-fallback-cli-procedure Configure an interface to _move_ an end device to a specified VLAN if a RADIUS server timeout occurs: [edit protocols dot1x authenticator] user@switch# set interface interface-name server-fail vlan-name
upvoted 7 times
...
yemicontrol
Most Recent 4 years ago
Answer is B Permit authentication, allowing traffic to flow from the end device through the interface as if the end device were successfully authenticated by the RADIUS server. Deny authentication, preventing traffic from flowing from the end device through the interface. This is the default. Move the end device to a specified VLAN if the switch receives a RADIUS access-reject message. The configured VLAN name overrides any attributes sent by the server. (The VLAN must already exist on the switch.) Sustain authenticated end devices that already have LAN access and deny unauthenticated end devices. If the RADIUS servers time out during reauthentication, previously authenticated end devices are reauthenticated and new users are denied LAN access.
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago