Implementing and Configuring Cisco Identity Services Engine (SISE) — Question 136

An engineer needs to configure a Cisco ISE server to issue a CoA for endpoints already authenticated to access the network. The CoA option must be enforced on a session, even if there are multiple active sessions on a port. What must be configured to accomplish this task?

Answer options

• A. the Reauth CoA option in the Cisco ISE system profiling settings enabled
• B. an endpoint profiling policy with the No CoA option enabled
• C. an endpoint profiling policy with the Port Bounce CoA option enabled
• D. the Port Bounce CoA option in the Cisco ISE system profiling settings enabled

Correct answer: A

Explanation

The correct answer is A because enabling the Reauth CoA option in the Cisco ISE system profiling settings allows the server to enforce the CoA on authenticated sessions. The other options either disable CoA functionality or do not apply the appropriate settings needed for session enforcement.