nerdexam
Cisco

350-401 · Question #590

A customer wants to use a single SSID to authenticate IoT devices using different passwords. Which Layer 2 security type must be configured in conjunction with Cisco ISE to achieve this requirement?

The correct answer is D. Identity PSK. To allow multiple IoT devices to use unique passwords on a single SSID, authenticated by Cisco ISE, Identity Pre-Shared Key (IPSK) is the appropriate Layer 2 security type.

Submitted by fernanda_arg· Mar 6, 2026Security

Question

A customer wants to use a single SSID to authenticate IoT devices using different passwords. Which Layer 2 security type must be configured in conjunction with Cisco ISE to achieve this requirement?

Options

  • AFast Transition
  • BCentral Web Authentication
  • CCisco Centralized Key Management
  • DIdentity PSK

How the community answered

(41 responses)
  • A
    7% (3)
  • B
    17% (7)
  • C
    5% (2)
  • D
    71% (29)

Why each option

To allow multiple IoT devices to use unique passwords on a single SSID, authenticated by Cisco ISE, Identity Pre-Shared Key (IPSK) is the appropriate Layer 2 security type.

AFast Transition

Fast Transition (802.11r) is a Wi-Fi amendment designed to improve client roaming speed by reducing re-authentication time, and it does not address the requirement for unique passwords per device on a single SSID.

BCentral Web Authentication

Central Web Authentication (CWA) uses a web portal for user authentication, typically for guest access, and is not designed for authenticating IoT devices using unique pre-shared keys.

CCisco Centralized Key Management

Cisco Centralized Key Management (CCKM) is a Cisco proprietary fast roaming solution that, like 802.11r, focuses on accelerating client re-associations, not on providing unique pre-shared keys per device for authentication on a single SSID.

DIdentity PSKCorrect

Identity Pre-Shared Key (IPSK) allows a single SSID to support multiple unique pre-shared keys, where each key can be associated with specific device identities and policies managed by Cisco ISE, fulfilling the requirement for different passwords for IoT devices.

Concept tested: Cisco ISE Identity PSK for IoT

Source: https://www.cisco.com/c/en/us/td/docs/wireless/controller/9800/config-guide/b_wlc_cg_9800/m_ipsk.html

Topics

#Cisco ISE#Identity PSK#WLAN Security#IoT Authentication

Community Discussion

No community discussion yet for this question.

Full 350-401 Practice