A customer has configured a single Policy Set to authenticate and authorize MAB and 802.1x requests on Cisco ISE. The 802.1x authorization rules are on the top of the list and check Active Directory group membership for a match. The MAB results are at the bottom of the list and check local Identity Groups for a match.
When a MAB request comes to ISE?
A . ISE will drop the request because 802.1x and MAB rules are not allowed in the same Policy Set
B . ISE will not try to find Active Directory group membership based on the 802.1x request
C . ISE will ignore the 802.1x authorization rules on the top
D . ISE will never match the MAB authorization rules at the bottom
E . ISE will try to find the active directory group membership based on the MAB request
Answer: E
Leave a Reply