Implementing Cisco Network Security (IINS, legacy) — Question 53

How does the Cisco ASA use Active Directory to authorize VPN users?

Answer options

• A. It sends the username and password to retire an ACCEPT or Reject message from the Active Directory server
• B. It queries the Active Directory server for a specific attribute for the specific user
• C. It downloads and stores the Active Directory database to query for future authorization

Correct answer: V, P, N

Explanation

The correct answer is A because the Cisco ASA sends the user's credentials to the Active Directory server to determine if access should be granted or denied. Option B is incorrect as it does not describe the standard process for user authorization in this context. Option C is also wrong since the ASA does not download the entire Active Directory database for authorization purposes.