CiscoCisco
350-401 · Question #1272
350-401 Question #1272: Real Exam Question with Answer & Explanation
The correct answer is C: network access based on the physical address of a device. MAC Authentication Bypass (MAB) provides network access control by authenticating devices based on their unique MAC address, typically against a central authentication server.
Submitted by suresh_in· Mar 6, 2026Security
Question
Which access control feature does MAB provide?
Options
- Asimultaneous user and device authentication
- Ballows devices to bypass authentication
- Cnetwork access based on the physical address of a device
- Duser access based on IP address
Explanation
MAC Authentication Bypass (MAB) provides network access control by authenticating devices based on their unique MAC address, typically against a central authentication server.
Common mistakes.
- A. MAB authenticates devices, not users, and does not provide simultaneous user and device authentication; that is typically handled by 802.1X with separate authentication processes.
- B. MAB does not allow devices to bypass authentication entirely; instead, it uses the MAC address as the authentication credential.
- D. MAB operates at Layer 2 using MAC addresses, not Layer 3 using IP addresses, for device authentication.
Concept tested. MAC Authentication Bypass (MAB)
Reference. https://www.cisco.com/c/en/us/td/docs/wireless/controller/8-5/config-guide/b_cg85/mab.html
Topics
#MAB#MAC authentication bypass#Network access control#Device authentication
Community Discussion
No community discussion yet for this question.