nerdexam
Cisco

300-430 · Question #342

A WLAN is being configured for guest access using the portal on the Cisco CMX. Which Layer 3 security setting must be selected?

The correct answer is A. Web-Policy-Splash Page Redirect. To redirect guest clients to an external portal such as Cisco CMX for authentication, the Layer 3 security policy must be set to Web-Policy Splash Page Redirect, which sends unauthenticated clients to a specified external URL.

WLAN Deployment

Question

A WLAN is being configured for guest access using the portal on the Cisco CMX. Which Layer 3 security setting must be selected?

Options

  • AWeb-Policy-Splash Page Redirect
  • BWeb-Policy-Conditional Redirect
  • CWeb-Policy-Passthrough
  • DWeb-Policy-Authentication

How the community answered

(34 responses)
  • A
    91% (31)
  • B
    3% (1)
  • D
    6% (2)

Why each option

To redirect guest clients to an external portal such as Cisco CMX for authentication, the Layer 3 security policy must be set to Web-Policy Splash Page Redirect, which sends unauthenticated clients to a specified external URL.

AWeb-Policy-Splash Page RedirectCorrect

Web-Policy Splash Page Redirect configures the WLC to intercept HTTP traffic from unauthenticated clients and redirect their browser to an external URL - in this case the Cisco CMX guest portal - before granting network access.

BWeb-Policy-Conditional Redirect

Web-Policy Conditional Web Redirect is triggered by RADIUS attributes returned during authentication, used to redirect already-authenticated clients, not to send guests to an external captive portal.

CWeb-Policy-Passthrough

Web-Policy Passthrough grants network access after the client acknowledges a splash page but does not perform portal-based authentication via an external system like CMX.

DWeb-Policy-Authentication

Web-Policy Authentication presents the WLC's own internal web authentication page rather than redirecting to an external portal such as CMX.

Concept tested: Layer 3 Web Policy configuration for external guest portal redirect

Source: https://www.cisco.com/c/en/us/td/docs/wireless/controller/8-0/config-guide/b_cg80/b_cg80_chapter_01011.html

Topics

#guest access#captive portal#CMX#Layer 3 security

Community Discussion

No community discussion yet for this question.

Full 300-430 Practice