Implementing and Operating Cisco Enterprise Network Core Technologies (ENCOR) — Question 777

Which mechanism can be used to enforce network access authentication against an AAA server if the endpoint does not support the 802.1X supplicant functionality?

Answer options

• A. MAC Authentication Bypass
• B. MACsec
• C. private VLANs
• D. port security

Correct answer: A

Explanation

MAC Authentication Bypass (MAB) is designed specifically for devices that do not support 802.1X, allowing them to authenticate through their MAC address. In contrast, MACsec provides encryption, private VLANs are used for traffic isolation, and port security restricts access based on MAC addresses but does not perform the same authentication function as MAB.