300-320 · Question #319
300-320 Question #319: Real Exam Question with Answer & Explanation
The correct answer is A: It is IEEE standard. 802.1X (Port-Based Network Access Control) is an IEEE standard - specifically IEEE 802.1X-2004 and its revisions. It operates by authenticating a supplicant (client) to an authenticator (switch/AP) using a backend authentication server (typically RADIUS). Because authentication c
Question
Options
- AIt is IEEE standard
- BIt can allow and deny port access based on device identity
- CIt works only with wired devices
- DIt can allow and deny port access based on user identity
Explanation
802.1X (Port-Based Network Access Control) is an IEEE standard - specifically IEEE 802.1X-2004 and its revisions. It operates by authenticating a supplicant (client) to an authenticator (switch/AP) using a backend authentication server (typically RADIUS). Because authentication can be based on certificates or MAC addresses tied to a device, it supports device-identity-based access control (B). Because it supports EAP methods that carry username/password credentials (EAP-PEAP, EAP-TTLS, etc.), it also supports user-identity-based access control (D). Choice C ('works only with wired devices') is FALSE - 802.1X is widely deployed on wireless networks (Wi-Fi WPA2/WPA3 Enterprise uses 802.1X) and is a core component of wireless NAC solutions.
Community Discussion
No community discussion yet for this question.