Implementing and Configuring Cisco Identity Services Engine (SISE) — Question 92

When planning for the deployment of Cisco ISE, an organization's security policy dictates that they must use network access authentication via RADIUS. It also states that the deployment needs to provide an adequate amount of security and visibility for the hosts on the network.
Why should the engineer configure MAB in this situation?

Answer options

• A. The Cisco switches only support MAB.
• B. MAB provides the strongest form of authentication available.
• C. MAB provides user authentication.
• D. The devices in the network do not have a supplicant.

Correct answer: D

Explanation

The correct answer is D because MAB (MAC Authentication Bypass) is specifically designed for devices that do not support 802.1X authentication, often referred to as lacking a supplicant. Options A, B, and C are incorrect because they either misstate the capabilities of MAB or refer to features that are not relevant to the specific situation where devices cannot perform authentication.