Which three statements are true regarding RFC 5176 (Change of Authorization)? (Choose three.)
Click on the arrows to vote for the correct answerA. B. C. D. E.
RFC 5176, also known as Change of Authorization (CoA), specifies a protocol that allows a RADIUS server to initiate a change in a user's authorization status, such as revoking or modifying access privileges.
The correct statements regarding RFC 5176 are:
A. It defines a mechanism to allow a RADIUS server to initiate a communication inbound to a NAS.
This statement is true. Before the CoA protocol, a Network Access Server (NAS) could only communicate with a RADIUS server when the user was initially authenticated. With CoA, a RADIUS server can initiate communication with the NAS at any time to change a user's authorization status.
B. It defines a wide variety of authorization actions, including "reauthenticate."
This statement is also true. RFC 5176 defines a range of authorization actions that a RADIUS server can take on a user's session, including "reauthenticate" to force a user to re-enter their credentials.
C. It defines the format for a Change of Authorization packet.
This statement is true. The CoA protocol defines the format for a CoA packet that is used to send authorization changes from a RADIUS server to a NAS.
D. It defines a DM.
This statement is false. The CoA protocol does not define a DM (Device Management) component.
E. It specifies that TCP port 3799 be used for transport of Change of Authorization packets.
This statement is true. The CoA protocol specifies that TCP port 3799 should be used for the transport of CoA packets between the RADIUS server and the NAS.
In summary, RFC 5176 defines a protocol that enables a RADIUS server to initiate a change in a user's authorization status, and it specifies the format for CoA packets and the port used for their transport.