I will go with A.guest
If transparent authentication fails, you can configure how to handle the transaction: you can grant the user guest access, or you can force an authentication prompt to appear to the user.
https://www.cisco.com/c/en/us/td/docs/security/wsa/wsa_12-5/User-Guide/b_WSA_UserGuide_12_5/b_WSA_UserGuide_11_7_chapter_0101.html
The ultimate goal is to ensure that the network is protected and that unauthorized users are not able to access sensitive information or engage in activities that could compromise its security.
you are correct, I have also initially thought the guest could be , but this is only If after assigned an action, in the question there is nothing like that mention.
About Failed Authentication
Users may be blocked from the web due to authentication failure for the following reasons:
Client/user agent limitations. Some client applications may not properly support authentication. You can bypass authentication for these clients by configuring Identification Profiles that do not require authorization and basing their criteria on the clients (and, optionally, on the URLs they need to access).
Authentication service is unavailable. An authentication service might be unavailable due to network or server issues. You can choose to allow unauthenticated traffic in this circumstance.
Invalid credentials. Some users may be unable to supply valid credentials for proper authentication (for example, visitors or users awaiting credentials). You can choose to grant these users limited access to the web.
https://www.cisco.com/c/en/us/td/docs/security/wsa/wsa-15-1/user-guide/swa-userguide-15-1/m-authentication-and-authorization.html#con_1350892
So guys, you are gonna need to read this document, the answer is there, and it correlates with A. Transparent Auth = users don't need to type in username and password. They authenticate with a certificate. If that fails, you can grant guest access or you can choose to prompt for username+PW.
https://www.cisco.com/c/en/us/td/docs/security/wsa/wsa_12-5/User-Guide/b_WSA_UserGuide_12_5/b_WSA_UserGuide_11_7_chapter_0101.html
for anyone who gets confused. we don't care if it has options or not, just what the default option is as we don't know what settings have been used.
Its C as by default it will block unless you specify
About Failed Authentication: Users may be BLOCKED from the web due to authentication failure for the following reasons: Client/user agent limitations... Authentication service is unavailable... Invalid credentials. Some users may be unable to supply valid credentials for proper authentication (for example, visitors or users awaiting credentials). You CAN choose to grant these users limited access to the web.
https://www.cisco.com/c/en/us/td/docs/security/wsa/wsa_12-5/User-Guide/b_WSA_UserGuide_12_5/b_WSA_UserGuide_11_7_chapter_0101.html#con_1350894
Your excerpt from the link is talking about general auth failures. in that same doc it says that failed TRANSPARENT authentication attempts can be given guest access or you can force an authentication prompt to appear to the user. If the prompt appears AND THAT fails to authenticate, then your excerpt would apply. The answer is A.
If transparent authentication fails, you can configure how to handle the transaction: you can grant the user guest access, or you can force an authentication prompt to appear to the user.
When an end user is shown an authentication prompt due to failed transparent user identification, and the user then fails authentication due to invalid credentials, you can choose whether to allow the user guest access.
I want to go with B:
The WSA provides options to configure what type of access is granted when transparent authentication fails. By default, the WSA allows limited Internet access to the user, which includes basic web browsing functionality but with restricted capabilities. The specific restrictions can be defined by the administrator and may include limitations on certain websites or protocols.
Option A, guest access, typically refers to a specific access level or network segment provided for guest users, usually with limited privileges and restricted access to internal resources. It is not directly related to the outcome of a transparent authentication failure.
If you read the link : https://www.cisco.com/c/en/us/td/docs/security/wsa/wsa11-0/user_guide/b_WSA_UserGuide/b_WSA_UserGuide_chapter_01001.html
When an end user is shown an authentication prompt due to failed transparent user identification, and the user then fails authentication due to invalid credentials, you can choose whether to allow the user guest access.
https://www.cisco.com/c/en/us/td/docs/security/wsa/wsa11-0/user_guide/b_WSA_UserGuide/b_WSA_UserGuide_chapter_01001.html
Invalid credentials. Some users may be unable to supply valid credentials for proper authentication (for example, visitors or users awaiting credentials). You can choose to grant these users limited access to the web.
But your link says this "If transparent authentication fails, you can configure how to handle the transaction: you can grant the user guest access, or you can force an authentication prompt to appear to the user." So how could you not chose A - guest ?
If transparent authentication fails, you can configure how to handle the transaction: you can grant the user guest access, or you can force an authentication prompt to appear to the user.
https://www.cisco.com/c/en/us/td/docs/security/wsa/wsa11-0/user_guide/b_WSA_UserGuide/b_WSA_UserGuide_chapter_01001.html
This section is not available anymore. Please use the main Exam Page.350-701 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
leowulf
Highly Voted 2 years, 9 months agoRododendron2
1 year, 1 month agoRododendron2
1 year, 1 month agoNian
3 months, 2 weeks agoachille5
Highly Voted 2 years, 3 months agoitsklk
2 years, 1 month agoITPro21
Most Recent 2 months, 1 week agokloug
7 months, 3 weeks agoPremium_Pils
8 months agoDemon_Queen_Velverosa
8 months, 4 weeks agoMPoels
1 year, 3 months agoJJ123123123
10 months, 1 week agoDemon_Queen_Velverosa
9 months agoabdul9621
1 year, 4 months agoums008
1 year, 11 months agoLaddu1256
1 year, 11 months agoitsklk
2 years, 1 month agojienBoq
2 years, 4 months agodavezz
2 years, 3 months agoTuxzinator
2 years, 4 months agobmayer
2 years, 4 months agoEmlia1
2 years, 6 months agosis_net_sec
2 years, 8 months ago