Huawei HCIE-Datacom V1.0 H12-891_V1.0 Question # 56 Topic 6 Discussion

H12-891_V1.0 Exam Topic 6 Question 56 Discussion:

Question #: 56

Topic #: 6

Network Admission Control (NAC) needs to be deployed on the network shown in the figure. Drag a proper authentication mode to each authentication point.

Get Premium H12-891_V1.0 Questions

Explanation

Correct Matching of Authentication Methods:

1️ 802.1X authentication → PC (GE0/0/2 on SW3)

2️ MAC address authentication → IP Phone (GE0/0/3 on SW3)

3️⃣ Portal authentication → Wireless Clients (Connected via SW2/AP)

Understanding Network Admission Control (NAC) Authentication Methods

???? Network Admission Control (NAC) enforces security policies before allowing devices onto the network.

???? Different types of devices require different authentication methods based on capabilities and security requirements.

Analysis of Each Authentication Type:

✅ 1️⃣ 802.1X Authentication (Used for PC on GE0/0/2 of SW3)

Best for devices that support user authentication (e.g., PCs, Laptops).

Requires supplicant software (e.g., Windows or macOS built-in 802.1X client).

Provides strong security using EAP (Extensible Authentication Protocol) over RADIUS.

✅ 2️⃣ MAC Address Authentication (Used for IP Phone on GE0/0/3 of SW3)

Best for devices that do not support username/password authentication (e.g., IP Phones, IoT devices).

Uses MAC addresses as identity credentials.

Suitable for VoIP networks, industrial IoT, and surveillance cameras.

✅ 3️⃣ Portal Authentication (Used for Wireless Clients on SW2/AP)

Best for guests or mobile users accessing Wi-Fi networks.

Redirects users to a web-based login page before granting access.

Used in public hotspots, campus Wi-Fi, and enterprise guest networks.

Why These Assignments Are Correct?

1️⃣ 802.1X for PC:

PCs support 802.1X authentication via supplicants (EAP-MD5, PEAP, etc.).

Ensures high security by verifying user credentials.

2️⃣ MAC Address Authentication for IP Phone:

IP Phones lack a username/password interface, so authentication is done via MAC addresses.

Simplifies authentication while maintaining security.

3️⃣ Portal Authentication for Wireless Clients:

Wireless users do not use 802.1X authentication directly; instead, they are redirected to a web login page.

Common in enterprise guest Wi-Fi and public hotspots.

Real-World Application:

Enterprise NAC Deployment: Ensures only authorized users and devices access the corporate network.

Campus & Hotel Wi-Fi Security: Uses Portal Authentication for guests, 802.1X for employees, and MAC-based for VoIP.

✅ Reference: Huawei HCIE-Datacom Guide – NAC Authentication Methods & Best Practices

Actual exam question for Huawei H12-891_V1.0 exam by Cyra9099 at Mar 19, 2026, 7:40:35 PM

Contribute your Thoughts:

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.

Spring Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

Huawei HCIE-Datacom V1.0 H12-891_V1.0 Question # 56 Topic 6 Discussion

Huawei HCIE-Datacom V1.0 H12-891_V1.0 Question # 56 Topic 6 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

Spring Sale Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: simple70

Huawei HCIE-Datacom V1.0 H12-891_V1.0 Question # 56 Topic 6 Discussion

Huawei HCIE-Datacom V1.0 H12-891_V1.0 Question # 56 Topic 6 Discussion

Correct Answer:

Options Selected by Other Users:

Contribute your Thoughts:

Awaiting moderator approval