Implementing and Configuring Cisco Identity Services Engine (SISE) — Question 273

A network engineer must define a Redirect ACL on a Cisco Wireless LAN Controller. The ACL must force unknown users to authenticate via a captive portal located on a Cisco ISE PSN on another network segment separated by a firewall. Which port must be permitted in the firewall to allow traffic between the Cisco Wireless LAN Controller and Cisco ISE?

Answer options

• A. UDP port 1812
• B. TCP port 8443
• C. UDP port 1645
• D. TCP port 8445

Correct answer: B

Explanation

The correct answer is B, TCP port 8443, as it is specifically used for communication with the captive portal on Cisco ISE. The other options, while related to authentication protocols (such as RADIUS), do not pertain to the specific captive portal function required in this scenario.