Implementing and Configuring Cisco Identity Services Engine (SISE) — Question 339

A Cisco ISE server sends a CoA to a NAD after a user logs in successfully using CWA.
Which action does the CoA perform?

Answer options

• A. It terminates the client session.
• B. It applies the downloadable ACL provided in the CoA.
• C. It triggers the NAD to reauthenticate the client.
• D. It applies new permissions provided in the CoA to the client session.

Correct answer: C

Explanation

The correct answer is C because a Change of Authorization (CoA) is specifically designed to prompt the Network Access Device (NAD) to reauthenticate the client, ensuring that their access rights are up to date based on the latest policies. Options A, B, and D are incorrect because they either suggest terminating the session or applying ACLs or permissions, which are not the primary function of a CoA.