Implementing and Configuring Cisco Identity Services Engine (SISE) — Question 241

Guest users report repeated prompts to authenticate with the portal when connecting to a wireless network. An administrator must configure Cisco ISE to reduce the number of prompts. The solution must meet the requirements:
• Users must be authenticated once.
• When reconnecting to the visitor network, users do not need to be redirected to the login page.

Which action completes the configuration?

Answer options

• A. Configure an authorization profile to send a redirection access control list only for unauthenticated users.
• B. Configure the Wi-Fi Guest Access policy to allow the GuestEndpoint group.
• C. Configure an authorization rule for guest flow to bypass authenticated MAC address.
• D. Configure an authentication rule for MAC Authentication Bypass users to add an authenticated MAC address in an identity group.

Correct answer: C

Explanation

The correct answer is C, as configuring an authorization rule to bypass authenticated MAC addresses allows users who have already authenticated to reconnect without facing repeated prompts. Option A incorrectly suggests redirection for unauthenticated users, which does not meet the requirement of reducing prompts for authenticated users. Option B focuses on group permissions without addressing the authentication prompt issue, and option D, while related to MAC Authentication Bypass, does not specifically prevent further authentication prompts for already authenticated users.