Phone VPN Configurations for Active Directory Authentication | CCIE Collaboration Exam 400-051 | Cisco

Phone VPN Configurations for Active Directory Authentication

Prev Question Next Question

Question

A collaboration engineer is designing a phone VPN infrastructure and the company security team requires Active Directory for authentication.

Which two phone VPN configurations meet this requirement? (Choose two)

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D. E. F.

AD.

The company security team requires Active Directory for authentication, which means that user authentication should be done using their Active Directory credentials. In this case, options A and F meet the requirement.

A. User ID and password authentication: This configuration allows users to authenticate using their Active Directory credentials, which include their user ID and password. The phone VPN client prompts the user for their credentials, and the credentials are verified against Active Directory.

F. Cisco Unified CM user ID and password authentication: This configuration uses Cisco Unified Communications Manager (CUCM) for user authentication. CUCM can be integrated with Active Directory, allowing users to authenticate using their Active Directory credentials.

B. Certificate-only authentication: This configuration does not meet the requirement because it does not involve Active Directory authentication. Instead, users are required to have a valid certificate installed on their device to authenticate.

C. Auto-network-detect authentication: This configuration does not meet the requirement because it is not a method of authentication. Auto-network-detect is a feature that allows the phone VPN client to automatically detect the type of network it is connected to and adjust its settings accordingly.

D. Password-only authentication: This configuration does not meet the requirement because it does not involve Active Directory authentication. Instead, users are required to have a password specific to the phone VPN client.

E. Cisco ASA Host ID check authentication: This configuration does not meet the requirement because it does not involve Active Directory authentication. Instead, it requires the phone VPN client to have a valid host ID to authenticate.