300-430 · Question #256
An engineer deploys APs in autonomous mode to provide corporate and guest access in several retail locations. Remote authentication with IEEE 802.1X is configured to ensure a secure wireless connectio
The correct answer is C. APs. In IEEE 802.1X, the authenticator is the network device that enforces access control between the supplicant and the authentication server, which in autonomous AP deployments is the AP itself.
Question
An engineer deploys APs in autonomous mode to provide corporate and guest access in several retail locations. Remote authentication with IEEE 802.1X is configured to ensure a secure wireless connection for corporate users. Which component must be configured as the authenticator?
Options
- ARADIUS server
- Bauthentication server
- CAPs
- Dsupplicant
How the community answered
(45 responses)- A2% (1)
- B4% (2)
- C89% (40)
- D4% (2)
Why each option
In IEEE 802.1X, the authenticator is the network device that enforces access control between the supplicant and the authentication server, which in autonomous AP deployments is the AP itself.
The RADIUS server is the authentication server, not the authenticator - it validates credentials but does not enforce port-level access control on the wireless medium.
Authentication server is a synonym for the RADIUS server role, which verifies credentials rather than controlling port access.
In autonomous mode, the AP directly handles the 802.1X exchange - it relays EAP messages between the wireless client (supplicant) and the RADIUS server, and it enforces port access based on the authentication result, fulfilling the authenticator role as defined by IEEE 802.1X.
The supplicant is the client device requesting network access, not the entity enforcing authentication policy.
Concept tested: IEEE 802.1X authenticator role in autonomous AP deployments
Source: https://www.cisco.com/c/en/us/td/docs/wireless/access_point/12-4_10b_JA/configuration/guide/ios124_10bJA_ap_cg/s4dot1x.html
Topics
Community Discussion
No community discussion yet for this question.