Implementing and Configuring Cisco Identity Services Engine (SISE) — Question 107

A network administrator notices that after a company-wide shut down, many users cannot connect their laptops to the corporate SSID.
What must be done to permit access in a timely manner?

Answer options

• A. Connect this system as a guest user and then redirect the web auth protocol to log in to the network.
• B. Allow authentication for expired certificates within the EAP-TLS section under the allowed protocols.
• C. Add a certificate issue from the CA server, revoke the expired certificate, and add the new certificate in system.
• D. Authenticate the user's system to the secondary Cisco ISE node and move this user to the primary with the renewed certificate.

Correct answer: B

Explanation

Allowing authentication for expired certificates within the EAP-TLS section is essential for enabling users to connect without needing new certificates immediately. The other options either involve guest access, revocation of certificates, or moving users between nodes, which do not directly address the immediate need for enabling connections for users with existing but expired certificates.