Implementing and Configuring Cisco Identity Services Engine (SISE) — Question 139

An engineer is unable to use SSH to connect to a switch after adding the required CLI commands to the device to enable TACACS+. The device administration license has been added to Cisco ISE, and the required policies have been created. Which action is needed to enable access to the switch?

Answer options

• A. The ip ssh source-interface command needs to be set on the switch
• B. 802.1X authentication needs to be configured on the switch.
• C. The RSA keypair used for SSH must be regenerated after enabling TACACS+.
• D. The switch needs to be added as a network device in Cisco ISE and set to use TACACS+.

Correct answer: D

Explanation

The correct action is to add the switch as a network device in Cisco ISE and configure it to use TACACS+, which is necessary for authentication. The other options do not address the requirement for TACACS+ configuration or are not relevant to the SSH connection issue after enabling TACACS+.