Which option is the correct definition for MAB?
Click on the arrows to vote for the correct answer
A. B. C. D.B.
MAB (MAC Authentication Bypass) is a network access control method that allows endpoints to access the network without requiring 802.1X authentication. MAB leverages the endpoint's MAC address as the authentication credential to grant or deny access to the network.
Option B is the correct definition for MAB. When an endpoint attempts to access the network, the switch will send an authentication request on behalf of the endpoint using the endpoint's MAC address as the credentials. The authentication server evaluates that MAC address against a list of devices permitted to access the network without stronger authentication. If the MAC address is on the list of permitted devices, the switch will grant access to the network. Otherwise, access will be denied.
Option A is incorrect because it refers to sticky MAC addresses, which are not used in MAB. Sticky MAC addresses are MAC addresses that are dynamically learned by the switch and retained in the switch's configuration. Sticky MAC addresses can be used as a form of MAC-based authentication, but they are not part of the MAB process.
Option C is incorrect because it refers to a local list of MAC addresses, which is not used in MAB. While local MAC address lists can be used as a form of MAC-based authentication, they are not part of the MAB process.
Option D is incorrect because it refers to the supplicant on the endpoint sending the MAC address as its credentials, which is not part of the MAB process. While the endpoint's MAC address is used as the authentication credential in MAB, the endpoint does not send the MAC address as its credentials. Instead, the switch sends an authentication request on behalf of the endpoint using the endpoint's MAC address as the credentials.