A. Implement a RADIUS request attribute policy to assist with realm selection and create different role-mapping rules for the user in each realm.
B. Implement a directory/attribute server on the realm and set up this server to determine by group membership the proper role to which a user should be mapped.
C. Reorder the role-mapping rules to allow for the more open role to be mapped first and then enable the "stop processing rules when this rule matches" function on this role.
D. Implement a Host Checker policy on the realm that determines the geographic location of the device and restricts the user based on the results of the policy.
第1题
A. Traffic is permitted from the trust zone to the untrust zone.
B. Intrazone traffic in the trust zone is permitted.
C. All traffic through the device is denied.
D. The policy is matched only when no other matching policies are found.
第2题
A.IKESAisbidirectional.
B.IPsecSAisbidirectional.
C.IKESAisestablishedduringphase2negotiations.
D.IPsecSAisestablishedduringphase2negotiations.
第3题
A. Authentication server
B. Session options
C. Authentication policy
D. End-point security policy
E. Role-mapping rules
第4题
A.showikesecurity-associations
B.showipsecsecurity-associations
C.showsecurityikesecurity-associations
D.showsecurityipsecsecurity-associations
为了保护您的账号安全,请在“上学吧”公众号进行验证,点击“官网服务”-“账号验证”后输入验证码“”完成验证,验证成功后方可继续查看答案!