ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-730 All Questions

View all questions & answers for the 300-730 exam
Go to Exam

Exam 300-730 topic 1 question 38 discussion

Actual exam question from Cisco's 300-730
Question #: 38
Topic #: 1
[All 300-730 Questions]


Refer to the exhibit. What is a result of this configuration?

  • A. Spoke 1 fails the authentication because the authentication methods are incorrect.
  • B. Spoke 2 passes the authentication to the hub and successfully proceeds to phase 2.
  • C. Spoke 2 fails the authentication because the remote authentication method is incorrect.
  • D. Spoke 1 passes the authentication to the hub and successfully proceeds to phase 2.
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by mpls_link at April 3, 2023, 4:15 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
r3spu
1 month, 2 weeks ago
Selected Answer: A
Answer: A. Spoke 1 fails the authentication because the authentication methods are incorrect. Why?? Hub’s profile: authentication local rsa-sig → hub sends a certificate authentication remote pre-shared-key cisco → hub expects each spoke to authenticate with the PSK cisco Spoke 1’s profile authentication local rsa-sig → Spoke 1 also sends a certificate (not the expected PSK) authentication remote pre-shared-key cisco → Spoke 1 expects the hub to use the PSK, but the hub uses a certificate Because both directions are mismatched (hub expects a PSK but receives a cert; Spoke 1 expects a PSK but receives a cert), IKEv2 authentication fails and the tunnel never reaches Phase 2. Spoke 2 has no authentication lines at all, so the router keeps the default “pre-shared-key both-ways.” That does satisfy the hub’s expectation (remote PSK cisco), so Spoke 2 can authenticate successfully.
upvoted 1 times
...
DaeIsBae
1 year, 7 months ago
Selected Answer: A
Hub local rsa-sig remote:psk Spoke 1 local: rsa-sig remote: psk Spoke 2 local: psk remote: rsa-sig C is not correct bcs Hub and Spoke2's PSK does not match, but authentication method is correct Hence, A is correct
upvoted 1 times
shadow2020
1 year, 1 month ago
wonder if you could response to this. HUb & spoke auth local is rsa, and remote is PSK
upvoted 1 times
...
...
mpls_link
1 year, 10 months ago
A is correct answer
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel