As a result, the correct permissions cannot be obtained immediately after the user authentication is passed. How to solve this problem?
In an agile network, users may need to access servers such as DNS, DHCP, and Portal before authentication. When the traffic of the user accessing the server passes through the firewall, the firewall queries the Agile controller-campus server for information about the agile security group corresponding to the traffic. Since the user has not passed the authentication at this time, the Agile controller-campus server will inform the firewall that the user belongs to the "Unknown Agile Security Group (Unknown)", which will cause the user’s traffic to match the "Unknown Agile Security Group (Unknown)" before the firewall refreshes the user’s identity.
As a result, the correct permissions cannot be obtained immediately after the user authentication is passed. How to solve this problem?
A . Turn off state detection on the F
C . Configure TSM on the F
E . Set up the security front domain. When an unauthenticated user accesses the server in the pre-security domain, the FW directly forwards the traffic.
F . Allow traffic to the server on the F
Answer: C
Latest H12-723_V3.0-ENU Dumps Valid Version with 368 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund