Refer to the exhibit. Which two commands under the tunnel-group webvpn-attributes result in a Cisco AnyConnect user receiving the AnyConnect prompt in the exhibit? (Choose two.)
The answers are A & E.
https://www.cisco.com/c/en/us/td/docs/security/asa/asa72/configuration/guide/conf_gd/vpngrp.html
Step 5 - To specify incoming URLs or IP addresses for the group, use the group-url command. Specifying a group URL or IP address eliminates the need for the user to select a group at login. When a user logs in, the security appliance looks for the user's incoming URL or address in the tunnel-group-policy table. If it finds the URL or address and if group-url is enabled in the tunnel group, then the security appliance automatically selects the associated tunnel group and presents the user with only the username and password fields in the login window.
The questions asks which two commands under the tunnel-group webvpn-attributes result in a Cisco AnyConnect user receiving the AnyConnect prompt. It does not ask whether authentication attempts are successful. Here, the keyword is 'AnyConnect prompt'.
How about this reason for discarding A?->"The drop-down list does not appear if you connect to the ASA using a group-url, as the purpose of the group-url is to perform the group selection"
https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/98580-enable-group-dropdown.html
A&E
For each group URL or address, enter a group-URL command. You can optionally explicitly enable (the default) or disable each URL or alias:
hostname(config-tunnel-webvpn)# group-url url [enable | disable]
hostname(config-tunnel-webvpn)# group-alias "Cisco Remote Access" enable
hostname(config-tunnel-webvpn)# group-url http://www.cisco.com enable
E to enable alias is definitely required
both B and C are required too but its always assumed that they are already done.
B group policy is not required as Default can be used
C if AAA is not configured than authentication will not work.
C and E seems correct, because AAA authentication is done under tunnel group config, and it will ask for username and password.
And the group-list under tunnel group as well, it will asks to select from the drop down menu.
C and E are correct.
All commands are present under tunnel-group webvpn-attributes, only "group-policy XXX internal" is a hidden command.
authentication aaa is set by default, so only answer E would suffice.
The only 2 commands under tunnel-group webvpn attributes are
group-alias and group-url.
All the others are somewhere else in the configuration not under tunnel-group webvpn attributes.
the correct answers are C & E , the questions ask about commands under tunnel-group attribute, authentication and group-alias are under the tunnel-group
B and E are correct
B enables the group-policy to check login-attempts against the internal (local) users storage
E creates the Alias for the Tunnel-Group
This section is not available anymore. Please use the main Exam Page.300-730 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
jimmyjose
7 months, 2 weeks agofukumoto0925
2 months, 3 weeks agohaydenme97
7 months, 3 weeks agostarletka
9 months, 4 weeks agokylesam2017
10 months, 1 week agoRosh8787
10 months, 2 weeks agomjuarez20
12 months agoAcnaris
1 year, 1 month agomarges
1 year, 3 months agoKhs01
1 year, 3 months agospambox730
1 year, 4 months agoNet4dd
1 year, 8 months agoNet4dd
1 year, 8 months agoLouisVuitton
2 years agomazinhoo
2 years, 3 months agonospampls
2 years, 7 months agoCarlj007
2 years, 10 months ago