Refer to the exhibits.
Exhibit 1
Exhibit 2
A network administrator deploys role-based tunneled node in a corporate network to unify the security policies enforcement. When users authenticate with 802.1X, ClearPass shows Accept results, and sends the HPE-User-Role attribute as expected. However, the switch always applies the denyall role.
Why does the switch fail to allocate the tunnel-employee role?
A. Denyall is a secondary role contained within tunnel-employee.
B. The switch is not configured with primary tunneled-node user role.
C. The switch is not configured with secondary tunneled-node user role.
D. RADIUS Access Accept messages time out in the switch.
C