Exam 300-715 topic 1 question 155 discussion

I believe D is the correct answer. RADIUS test is called out in the question. Im assuming the CLI *test aaa group radius server ise-psn fake-user fake-pass new-code* is used. In this example when the 'RADIUS test' fails it is due to an incorrect shared secret. Endpoint has nothing to do with RADIUS test. Nothing in the question refers to RADIUS / DTLS so C is not the answer.

If "the administrator configures all of the settings in Cisco ISE and adds the proper configurations to the switch" means the shared secrets were configured properly, The answer is B

Correct answer is B 100%. I just tested this Wrong user creds (Same keys in ISE and the SW) 3560CX-B#test aaa group radius cisco wrong legacy Attempting authentication test to server-group radius using radius User authentication request was rejected by server. Correct user creds (Same keys in ISE and the SW) 3560CX-B#test aaa group radius cisco good legacy Attempting authentication test to server-group radius using radius User was successfully authenticated. Correct user creds (Different keys in ISE and the SW) 3560CX-B#test aaa group radius cisco good legacy Attempting authentication test to server-group radius using radius No authoritative response from any server.

Correct answer is D The key here is "RADIUS test" is done with the command: test aaa radius username admin password cisco123 leagacy RADIUS communication happens between the NAS and ISE not the endpoint and the switch.

Answer for me is B because of this statement 'configures all of the settings in Cisco ISE and adds the proper configurations to the switch'.

Thanks for the post. visit https://www.iteducationcentre.com/ccna-course-in-pune-area.php for more details

"endpoint" is not relevant we are talking about a NAD and ISE

If "the administrator configures all of the settings in Cisco ISE and adds the proper configurations to the switch" means the shared secrets were configured properly, The answer is B

out of experience - D but based on "has been properly configured" it should be B

The most likely cause of the RADIUS test failure is that the shared secret is incorrect on the switch or on Cisco ISE. The shared secret is a password that is used to encrypt RADIUS traffic between the switch and Cisco ISE. If the shared secret is incorrect, then the RADIUS traffic will not be encrypted and will be easily intercepted by attackers. This could allow attackers to impersonate valid users and gain access to the network

The question states that the NAD and ISE have been properly configured. This is a simulated user test.

I think the answer is B. Question states that configuration has properly been made on both the devices (ISE and the switch)

Usually the failing authentication between NAD and ISE is the mismatched RADIUS shared secret.