In single SSID Onboarding, which method can be used in the Enforcement Policy to distinguish between a provisioned device and a device that has not gone through the Onboard workflow?
A. Onguard Agent used
B. Authentication Method used
C. Network Access Device used
D. Active Directory Attributes
E. Endpoint OS Category
B is correct.
Since in the provisioning state you will use EAP-PEAP , then you will use EAP-TLS