Deal of The Day! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

Juniper Exam JN0-480 Topic 1 Question 33 Discussion

Actual exam question for Juniper's JN0-480 exam
Question #: 33
Topic #: 1
[All JN0-480 Questions]

Which statement about Juniper Apstra role-based access control is correct?

Show Suggested Answer Hide Answer
Suggested Answer: A, B, C

To implement remote user authentication for the role-based access control of your Apstra server, you can use one of the following methods: TACACS+, LDAP, or RADIUS. These are the protocols that Juniper Apstra supports to authenticate and authorize users based on roles assigned to individual users within an enterprise. You can configure the Apstra server to use one or more of these protocols as the authentication sources and specify the order of preference. You can also configure the Apstra server to use local user accounts as a fallback option if the remote authentication fails. The other options are incorrect because:

D) SAML is wrong because SAML (Security Assertion Markup Language) is not a supported protocol for remote user authentication for the role-based access control of your Apstra server. SAML is an XML-based standard for exchanging authentication and authorization data between different parties, such as identity providers and service providers. SAML is commonly used for web-based single sign-on (SSO) scenarios, but it is not compatible with the Apstra server.

E) Auth0 is wrong because Auth0 is not a protocol, but a service that provides authentication and authorization solutions for web and mobile applications. Auth0 is a platform that supports various protocols and standards, such as OAuth, OpenID Connect, SAML, and JWT. Auth0 is not a supported service for remote user authentication for the role-based access control of your Apstra server.Reference:

User Authentication Overview

[Juniper Apstra] Authentication and Authorization Debugging1

Authenticate User (API)

Configure Apstra Server


Contribute your Thoughts:

Shaun
1 days ago
I'm not sure about the viewer role. Can it really be deleted? That doesn't sound right.
upvoted 0 times
...
Virgie
5 days ago
Option B seems correct. The administrator role should have the highest level of permissions.
upvoted 0 times
...
Daren
9 days ago
I think C) The user role can create roles is the correct statement, because it makes sense for users to have that capability.
upvoted 0 times
...
Karl
11 days ago
I disagree, I believe the correct statement is B) The administrator role can see all permissions.
upvoted 0 times
...
Judy
13 days ago
I think the correct statement is A) The viewer role is predefined and can be deleted.
upvoted 0 times
...

Save Cancel