The NAC Agent uses which port and protocol to send discovery packets to an ISE Policy Service Node?
A. tcp/8905
B. udp/8905
C. http/80
D. https/443
The NAC Agent uses which port and protocol to send discovery packets to an ISE Policy Service Node?
The SWISS protocol is a stateless request response protocol that allows NAC Agents which are running on managed clients to discover the Cisco ISE server, and retrieve configuration and operational information.
The NAC Agent connects to the Cisco ISE server by sending SWISS unicast discovery packets out on User Datagram Protocol (UDP) port 8905 until a Cisco ISE node that assumes the Policy Service persona sends a response to the client.
The SWISS protocol uses TCP transport for all the messages and UDP transport for periodical requests.
The NAC Agent tunnels all the SWISS requests over HTTPS and pings the Cisco ISE SWISS UDP server for changes to its authentication and posture state
https://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_pos_pol.pdf
discovery from NAC to ISE is UDP 8905
The SWISS protocol is a stateless request response protocol that allows NAC Agents which are running on
managed clients to discover the Cisco ISE server, and retrieve configuration and operational information. The
NAC Agent connects to the Cisco ISE server by sending SWISS unicast discovery packets out on User
Datagram Protocol (UDP) port 8905 until a Cisco ISE node that assumes the Policy Service persona
sends a response to the client. The SWISS protocol uses TCP transport for all the messages and UDP
transport for periodical requests. The NAC Agent tunnels all the SWISS requests over HTTPS and pings
the Cisco ISE SWISS UDP server for changes to its authentication and posture state.
I believe the answer is A because HTTPS is used.