Cisco
300-730 · Question #193
300-730 Question #193: Real Exam Question with Answer & Explanation
Sign in or unlock 300-730 to reveal the answer and full explanation for question #193. The question stem and answer options stay visible for context.
Troubleshooting VPNs
Question
Refer to the following configuration exhibit. Which action resolves the issue?
aaa authentication login EAP_AUTHc local
aaa authorization exec default local
aaa authorization network EAP_AUTHc local
crypto pki trustpoint TP_AnyConnect
enrollment selfsigned
usage ike
serial-number none
fqdn Router.com
ipaddress none
subject-name cner01.companyx.com
subject-alt-name r01.companyx.com
revocation-check none
state-pair AnyConnect
crypto ikev2 profile AC_EAP
match identity remote key-id "$AnyConnectClients$"
authentication local rsa-sig
authentication remote anyconnect-eap aggregate
pki trustpoint TP_AnyConnect
aaa authentication anyconnect-eap EAP_AUTHc
aaa authorization group anyconnect-eap IKE_EAP_AUTHZ ikev2-auth-policy
aaa authorization user anyconnect-eap cached
no crypto ikev2 http-url cert
Options
- AUse symmetric keys in ikev2 profile.
- BChange Secure Client IKE identity to "$Default$".
- CEnable crypto ikev2 http-url cert.
- DReplace self-signed certificate with a valid certificate.
Unlock 300-730 to see the answer
You've previewed enough free 300-730 questions. Unlock 300-730 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.
Topics
#IKEv2#AnyConnect EAP#PKI trustpoint#self-signed certificate