nerdexam
Cisco

210-255 · Question #164

Which technology is the leading industry approach used to automatically enforce NAC?

The correct answer is D. 802.1x. IEEE 802.1X is the industry-standard protocol for port-based Network Access Control, enabling automatic authentication and authorization enforcement at the network edge.

Security Policies and Procedures

Question

Which technology is the leading industry approach used to automatically enforce NAC?

Options

  • ASNMP
  • Bport security
  • CIGMP
  • D802.1x

How the community answered

(67 responses)
  • A
    6% (4)
  • B
    1% (1)
  • C
    1% (1)
  • D
    91% (61)

Why each option

IEEE 802.1X is the industry-standard protocol for port-based Network Access Control, enabling automatic authentication and authorization enforcement at the network edge.

ASNMP

SNMP is used for network device monitoring and management via polling and traps, and has no built-in mechanism to enforce access control decisions.

Bport security

Port security restricts access using statically configured MAC address lists per switch port and is not a scalable or automated NAC enforcement mechanism.

CIGMP

IGMP is a network-layer protocol that manages multicast group membership and plays no role in authenticating or controlling network access.

D802.1xCorrect

802.1X is an IEEE standard for port-based access control that works with RADIUS servers and Extensible Authentication Protocol (EAP) to automatically authenticate and authorize devices before granting network access. It enforces NAC policies dynamically - allowing, quarantining, or blocking devices - without manual intervention, making it the leading industry approach for automated NAC.

Concept tested: 802.1X as the standard for automated NAC enforcement

Source: https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_usr_8021x/configuration/xe-17/sec-user-8021x-xe-17-book.html

Topics

#802.1x#NAC#network access control#port security

Community Discussion

No community discussion yet for this question.

Full 210-255 Practice