Cisco 802.1X phasing enables flexible deployments through the use of open, low-impact, and closed modes. What is a unique characteristic of the most secure mode?
A.
Granular ACLs applied prior to authentication
B.
Per user dACLs applied after successful authentication
C.
Only EAPoL traffic allowed prior to authentication
D.
Adjustable 802.1X timers to enable successful authentication
Trust Sec How to Guides: Closed Mode:
Figure 3 Closed Mode Default 802.1X Port Behavior
In Closed Mode, the switchport does not allow any traffic except EAP over LAN (EAPoL) until a successful authentication takes place. There is no concept of pre-authentication access, which means that no access is allowed—such as Dynamic Host Configuration Protocol (DHCP), HTTP, and Domain Name System (DNS)—while authentication is in progress. Closed Mode can be useful for VLAN-based enforcement since the client does not get an IP address until they have been successfully authenticated.
upvoted 2 times
...
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
damova
5 years, 9 months ago