Exam 350-401 topic 1 question 840 discussion

MAC Authentication Bypass (MAB) is an access control technique that enables port-based access control using the MAC address of an endpoint, and it is typically used as a fallback mechanism to 802.1x. A MAB-enabled port can be dynamically enabled or disabled based on the MAC address of the endpoint that connects to it WebAuth, like MAB, can be used as a fallback authentication mechanism for 802.1x. If both MAB and WebAuth are configured as fallbacks for 802.1x, when 802.1x times out, a switch first attempts to authenticate through MAB, and if it fails, the switch attempts to authenticate with WebAuth Extracted from Secure Network Access Control, Chapter 25 of the OCG

A is correct

A. WebAuth WebAuth, short for Web Authentication, allows users to authenticate to the network through a web portal. When a device connects to the network, it's redirected to a web page where the user can enter their credentials (such as username and password). These credentials are then sent to the AAA server for authentication. Once authenticated, the device is granted access to the network.

Correct!

"Use the web-based authentication feature, known as web authentication proxy, to authenticate end users on host systems that do not run the IEEE 802.1x supplicant." https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst9600/software/release/17-2/configuration_guide/sec/b_172_sec_9600_cg/configuring_web_based_authentication.html

correct