EAP-CHAINING Support

B.

EAP-Chaining is an extension to the Extensible Authentication Protocol (EAP) that provides a mechanism for authenticating a user and device simultaneously, where the device is authenticated first, and then the user is authenticated. This protocol allows for stronger authentication of the device and user, providing enhanced security for network access.

Out of the given options, the correct answer is C. Cisco AnyConnect NAM and Cisco Access Control Server are capable of supporting EAP-Chaining.

Here is a brief explanation of each option:

Option A: Cisco Secure Services Client (SSC) is a legacy software client for wired and wireless 802.1X authentication, and Cisco Access Control Server (ACS) is a legacy AAA server that supports 802.1X. However, neither SSC nor ACS support EAP-Chaining, so this option is incorrect.

Option B: Cisco AnyConnect NAM (Network Access Manager) is a software client for VPN and wireless 802.1X authentication, and Cisco Identity Service Engine (ISE) is a AAA server that supports 802.1X and other authentication methods. While AnyConnect NAM supports EAP-Chaining, ISE does not, so this option is incorrect.

Option C: Cisco AnyConnect NAM supports EAP-Chaining, and Cisco Access Control Server (ACS) supports 802.1X and can be used as a RADIUS server for EAP-Chaining authentication. This makes option C the correct answer.

Option D: Windows Native Supplicant is the built-in 802.1X client for Windows operating systems, and Cisco Identity Service Engine (ISE) is a AAA server that supports 802.1X and other authentication methods. However, Windows Native Supplicant does not support EAP-Chaining, so this option is incorrect.

In summary, the correct answer is option C because Cisco AnyConnect NAM supports EAP-Chaining, and Cisco Access Control Server supports 802.1X and can be used as a RADIUS server for EAP-Chaining authentication.