Implementing Cisco Secure Access Solutions (SISAS, legacy) — Question 5

Changes were made to the ISE server while troubleshooting, and now all wireless certificate authentications are failing. Logs indicate an EAP failure. What is the most likely cause of the problem?

Answer options

• A. EAP-TLS is not checked in the Allowed Protocols list
• B. Certificate authentication profile is not configured in the Identity Store
• C. MS-CHAPv2-is not checked in the Allowed Protocols list
• D. Default rule denies all traffic
• E. Client root certificate is not included in the Certificate Store

Correct answer: A

Explanation

The most likely cause of the problem is that EAP-TLS is not checked in the Allowed Protocols list, which prevents the authentication process from using this protocol. The other options either refer to misconfigurations that would not directly lead to EAP failures or involve protocols that are not the primary method being utilized in this scenario.