Implementing and Configuring Cisco Identity Services Engine (SISE) — Question 179

An engineer is configuring 802.1X and is testing out their policy sets. After authentication, some endpoints are given an access-reject message but are still allowed onto the network. What is causing this issue to occur?

Answer options

• A. The authorization results for the endpoints include the Trusted security group tag.
• B. The authorization results for the endpoints include a dACL allowing access.
• C. The switch port is configured with authentication event server dead action authorize vlan.
• D. The switch port is configured with authentication open.

Correct answer: D

Explanation

The correct answer is D because configuring the switch port with 'authentication open' allows all devices to connect without requiring successful authentication. Options A and B involve authorization results that would typically restrict access, and option C pertains to a different action that does not explain the acceptance of unauthorized devices.