ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-430 All Questions

View all questions & answers for the 300-430 exam
Go to Exam

Exam 300-430 topic 1 question 97 discussion

Actual exam question from Cisco's 300-430
Question #: 97
Topic #: 1
[All 300-430 Questions]

A user is trying to connect to a wireless network that is configured for WPA2-Enterprise security using a corporate laptop. The CA certificate for the authentication server has been installed on the Trusted Root Certification Authorities store on the laptop. The user has been prompted to enter the credentials multiple times, but the authentication has not succeeded. What is causing the issue?

  • A. There is an IEEE invalid 802.1X authentication policy on the authentication server.
  • B. The user Active Directory account is locked out after several failed attempts.
  • C. There is an invalid 802.1X authentication policy on the authenticator.
  • D. The laptop has not received a valid IP address from the wireless controller.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Sorvahr at Oct. 18, 2020, 6:22 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
cisco_spo
Highly Voted 3 years, 4 months ago
This is a classic Cisco putting ambiguous questions that will have multiple right answers. The IP address response is incorrect and can be ruled out because DHCP occurs after a 802.1x authentication when the client is in the run state (assuming no WebAuth). That leaves an invalid authentication policy on the authenticator which it could be if they didn't define the AAA settings properly. It could be an account lockout as the user will not be notified if it's locked. The final option is an invalid authentication policy on the authentication server. All three of these could be right but I would choose the user account is locked because it says you are troubleshooting a user specific issue. The misconfigured authenticator or authentication server would have widespread problems affecting multiple users wheras the individual user account being locked would explain a user specific problem.
upvoted 21 times
...
Sorvahr
Highly Voted 3 years, 6 months ago
Wrong, correct answer is A
upvoted 9 times
...
claudio392
Most Recent 1 month, 1 week ago
Selected Answer: A
I suppose this answer
upvoted 1 times
...
rrahim
2 months, 1 week ago
Selected Answer: B
The issue is likely caused by the user's Active Directory (AD) account being locked out after multiple failed authentication attempts. When a user enters incorrect credentials multiple times, many organizations have policies in place to lock the account temporarily or until an administrator unlocks it. This prevents unauthorized access but can also cause legitimate users to be locked out if they mistype their credentials.
upvoted 2 times
...
kthekillerc
2 years, 5 months ago
Provided answer is correct
upvoted 1 times
Seba_o_s
6 months, 1 week ago
No, there indicate that "the authenticator", that mean the WLC, but the policy are configured in ISE or authentication server. Correct answer is A
upvoted 3 times
...
...
Pavs0490
2 years, 7 months ago
I think it may be A. "If the supplicant submits an invalid credential or is not allowed to access the network for policy reasons, the authentication server returns a RADIUS Access-Reject message with an encapsulated EAP-Failure message"
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago