A: Incorrect — RADIUS typically uses UDP (1812/1813), while HWTACACS/TACACS+ uses TCP (port 49).
B: Incorrect — In RADIUS, only the user-password attribute is encrypted; fields are not selectively encrypted by user choice. TACACS+ can encrypt the entire payload.
D: Incorrect — Because RADIUS uses UDP, transport is not inherently reliable.
C: Correct — RADIUS and HWTACACS differ in message structure and returned attributes after authentication (e.g., RADIUS attribute–value pairs for access control/QoS/VLAN vs. HWTACACS command/privilege oriented responses). Thus the returned content/format differs between the two.
[References: HCIP-Access V2.5 Study Guide – AAA overview and comparison of RADIUS vs HWTACACS (transport, encryption scope, response attributes)., , ]
Submit