Implementing and Configuring Cisco Identity Services Engine (SISE) — Question 80

While configuring Cisco TrustSec on Cisco IOS devices, the engineer must set the CTS device ID and password in order for the devices to authenticate with each other. However, after this is complete, the devices are not able to properly authenticate. What issue would cause this to happen even if the device ID and passwords are correct?

Answer options

• A. EAP-FAST is not enabled.
• B. The SGT mappings have not been defined.
• C. The device aliases are not matching.
• D. The devices are missing the configuration cts credentials trustsec verify 1.

Correct answer: A

Explanation

The correct answer is A because EAP-FAST must be enabled for the authentication process to work properly in Cisco TrustSec. If EAP-FAST is not enabled, even with correct device IDs and passwords, the devices won’t authenticate. The other options do not directly prevent authentication when the device ID and passwords are correct.