Cisco Certified Internetwork Expert (CCIE) Practice Test

Disable ads (and more) with a membership for a one time $2.99 payment

Enhance your networking skills with the Cisco Certified Internetwork Expert Test. Tackle challenging questions and get detailed explanations. Prepare effectively to excel in your CCIE certification exam!

Each practice test/flash card set has 50 randomly selected questions from a bank of over 500. You'll get a new set of questions each time!

Practice this question and more.

Which three authorization technologies does Cisco TrustSec support? (Choose three)

SGT
SGACL
MAB
802.1x

The correct answer is: SGT

Cisco TrustSec is a security architecture that relies on a set of technologies to ensure that only authorized users and devices can access network resources. The authorization technologies supported by Cisco TrustSec provide a framework for implementing security policies based on the identity of the user or device, rather than relying solely on network topology. The SGT, or Security Group Tag, is a critical component of Cisco TrustSec. It is used to classify traffic based on the user or device identity and its corresponding security group. This tagging allows for more precise access control and helps enforce security policies across the network. SGTs facilitate granular policy enforcement when combined with other elements of TrustSec. In addition, SGACL, or Security Group Access Control List, works in conjunction with SGTs to determine what actions are allowed or denied for specific security groups. SGACLs utilize the tags assigned to devices to apply the relevant access control policies, effectively merging user identity with network security. MAB, or Mac Authentication Bypass, is an alternative authentication method but is typically used for devices that do not support 802.1x, such as IP phones or printers. While MAB plays a role in device authentication, it is not primarily focused on the authorization aspect in the context of TrustSec