nerdexam
Exams300-730Questions#90
Cisco

300-730 · Question #90

300-730 Question #90: Real Exam Question with Answer & Explanation

The correct answer is D: EAP-AnyConnect. When no RADIUS server is available, EAP-AnyConnect is the only AnyConnect EAP type that authenticates users against a local database on the headend device.

Question

An administrator is setting up AnyConnect for the first time for a few users. Currently, the router does not have access to a RADIUS server. Which AnyConnect protocol must be used to allow users to authenticate?

Options

  • AEAP-GTC
  • BEAP-MSCHAPv2
  • CEAP-MD5
  • DEAP-AnyConnect

Explanation

When no RADIUS server is available, EAP-AnyConnect is the only AnyConnect EAP type that authenticates users against a local database on the headend device.

Common mistakes.

  • A. EAP-GTC requires an external authentication server such as RADIUS to validate one-time passwords or token-based credentials.
  • B. EAP-MSCHAPv2 depends on a RADIUS server or Active Directory to perform the MS-CHAP challenge-response exchange.
  • C. EAP-MD5 requires a RADIUS server to store and verify the MD5-hashed user credentials.

Concept tested. AnyConnect EAP local authentication without RADIUS

Reference. https://www.cisco.com/c/en/us/td/docs/security/vpn_client/anyconnect/anyconnect49/administration/guide/b_AnyConnect_Administrator_Guide_4-9.html

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 300-730 Practice