Exam 300-715 topic 1 question 16 discussion

C is correct--Low Impact mode deployment phase allows for suspension of the controlled port behavior (authentication open command) allowing for 802.1X auth to occur but no restriction due to the normal "closed mode" restriction of EAP only packets. It further allows for a Pre-authentication ACL to be used that can be customized to permit or deny any specific traffic--during the pre-authentication status. Once authenticated, this Pre-auth ACL will continue to apply restriction unless augmented with a DACL bearing the approved access permission as per policy.

C is correct as in low impact mode the aim is to allow limited network access without authentication then authorize to the network authenticated devices

is not A - Formerly known as high-security mode, closed mode allows only EAPOL traffic until the authentication process completes, which is the default behavior of an 802.1X- enabled switch port.

The answer is correct, refer to the following phrases mentioned in the official book: 1. Remember that the goal of low-impact mode is to provide very limited network access to devices without authentication and then provide very specific access to those that have been authorized; this is the least privilege security principle. 2. Low-impact mode uses authentication open but adds security on top of the framework was built in monitor mode. It uses a PACL on the switch port to permit critical traffic of certain endpoints, such as thin clients, to function prior to an attempted authentication. After the authentication, the authorization should provide specific access, unlike monitor mode, which is the same before and after authentication.