350-401 Question #446: Real Exam Question with Answer & Explanation

Question

Refer to the exhibit. Which single security feature is recommended to provide Network Access Control m the enterprise?

Options

• AMAB
• B802.1X
• CWebAuth
• Dport security sticky MAC

Explanation

802.1X for Network Access Control

802.1X is the industry-standard, recommended solution for Network Access Control (NAC) in enterprise environments because it provides robust, identity-based authentication using the EAP (Extensible Authentication Protocol) framework, integrating with RADIUS servers to dynamically authorize users and devices before granting network access.

Why the distractors are wrong:

• MAB (MAC Authentication Bypass) is a fallback mechanism used only when a device cannot support 802.1X - it relies on MAC addresses, which can be easily spoofed, making it insufficient as a standalone enterprise solution.
• WebAuth (Web Authentication) is typically used as a last-resort method (e.g., for guest access) and requires HTTP/HTTPS interaction, making it impractical for automated enterprise NAC.
• Port Security Sticky MAC simply locks a port to a learned MAC address - it has no real authentication mechanism and offers no identity-based access control, making it unsuitable for scalable enterprise NAC.

🧠 Memory Tip: Think "802.1X = Enterprise eXcellence" - it's the only option that uses true identity-based authentication with a RADIUS backend, which is the hallmark of enterprise-grade NAC. If a question mentions enterprise + NAC, 802.1X is almost always the answer.

No community discussion yet for this question.