An IT professional is setting up a Pre-Authentication Check using RADIUS. They need to ensure that the same service will authenticate the user to the Network Access Device (NAD). What is a crucial step they must take to configure this correctly?
A.
Set up a separate RADIUS server to handle the Pre-Authentication Check.
B.
Configure the RADIUS server to process the Pre-Authentication Check and the NAD authentication request.
C.
Use a different authentication protocol for the NAD.
In a Pre-Authentication workflow (often used in Captive Portals), ClearPass first checks the user's credentials locally or against an external source before the actual NAD (switch/controller) sends the final RADIUS request. For this to work seamlessly, the same service or logic in ClearPass must be able to handle the initial check and the subsequent NAD request to ensure consistency in role assignment and session tracking.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit