nerdexam
Exams300-730Questions#210
Cisco

300-730 · Question #210

300-730 Question #210: Real Exam Question with Answer & Explanation

The correct answer is D: It manages and restricts user access to specific web resources.. Web-type ACLs in Cisco ASA Clientless SSL VPN configurations control which web resources authenticated users are permitted or denied access to through the VPN portal.

Remote Access VPN

Question

What is the purpose of a web-type access control list in a Clientless SSL VPN configuration?

Options

  • AIt encrypts and decrypts the data traffic passing through the VPN.
  • BIt logs user activities for compliance and monitoring.
  • CIt authenticates users based on their credentials.
  • DIt manages and restricts user access to specific web resources.

Explanation

Web-type ACLs in Cisco ASA Clientless SSL VPN configurations control which web resources authenticated users are permitted or denied access to through the VPN portal.

Common mistakes.

  • A. Encryption and decryption of VPN data is handled by the SSL/TLS protocol stack, not by access control lists of any type.
  • B. User activity logging is performed by AAA accounting and syslog features configured separately, not by web-type ACLs.
  • C. User authentication is managed by AAA services such as RADIUS, LDAP, or the local user database, not by access control lists.

Concept tested. Web-type ACL purpose in Clientless SSL VPN

Reference. https://www.cisco.com/c/en/us/td/docs/security/asa/asa96/configuration/vpn/asa-96-vpn-config/vpn-clientless-ssl.html

Topics

#Clientless SSL VPN#web-type ACL#access control#URL filtering

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 300-730 Practice