nerdexam
Exams350-401Questions#1211
CiscoCisco

350-401 · Question #1211

350-401 Question #1211: Real Exam Question with Answer & Explanation

Sign in or unlock 350-401 to reveal the answer and full explanation for question #1211. The question stem and answer options stay visible for context.

Submitted by tarun92· Mar 6, 2026Network Access Control and Identity Services / Infrastructure Security - Securing Management Plane Access on Cisco IOS devices with ISE integration

Question

A customer deployed an ISE solution that allows for web authentication and URL redirect enforced from the access layer. Due to control plane security concerns, only host IP 10.0.1.25 should have HTTP access to these switches. Which configuration must be applied to the switches? A. B. C. D.

Options

  • Aip access-list extended HOST-ACL 10 permit host 10.0.1.25 any 20 deny any any ip http server ip http secure-server ip http secure-active-session-modules none ip http active-session-modules none ip http access-class HOST-ACL
  • Bip access-list standard 10 permit 10.0.1.25 0.0.0.0 ip http server ip http secure-server ip http secure-active-session-modules none ip http access-class 10
  • Cip access-list standard 10 deny 10.0.1.25 0.0.0.0 permit any ip http server ip http secure-server class-map CoPP_Class match access_group 10 policy-map CoPP_Policy class CoPP_Class police 100000 conform-action permit exceed-action drop violate-action drop control-plane service-policy input CoPP_Policy
  • Dip access-list extended HOST-ACL 10 permit host 10.0.1.25 any 20 deny any any no ip http server ip http secure-server class-map CoPP_Class match access_group HOST-ACL policy-map CoPP_Policy class CoPP_Class police 100000 conform-action permit exceed-action drop violate-action drop control-plane service-policy input CoPP_Policy

Unlock 350-401 to see the answer

You've previewed enough free 350-401 questions. Unlock 350-401 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.

Unlock 350-401 - $49.99 / 30 daysSign in

Topics

#ISE Web Authentication#Control Plane Security#HTTP Access Control#ACL Management
Full 350-401 PracticeBrowse All 350-401 Questions