Implementing and Configuring Cisco Identity Services Engine (SISE) — Question 216

An engineer is adding a new network device to be used with 802.1X authentication. After configuring the device, the engineer notices that no endpoints that connect to the switch are able to authenticate. What is the problem?

Answer options

• A. The command dot1x system-auth-control is not configured on the switch.
• B. The switch’s supplicant is unable to establish a connection to Cisco ISE.
• C. The command dot1x critical vlan 40 is not configured on the switch ports.
• D. The endpoint firewalls are blocking the EAPoL traffic.

Correct answer: A

Explanation

The correct answer is A because the command 'dot1x system-auth-control' must be enabled on the switch to allow 802.1X authentication to function. Option B is incorrect as it relates to the connection to Cisco ISE, which is not the primary issue here. Option C addresses a specific VLAN configuration that, while important, does not directly prevent the authentication process from starting. Option D suggests a firewall issue, but the main requirement is the system-auth-control command.