Your company is using a dynamic VPN configuration on their SRX device. Your manager
asks you to enforce password expiration policies for all VPN users. Which authentication
method meets the requirement?
A.
LDAP
B.
local password database
C.
TACACS+
D.
RADIUS
Explanation:
I think taht D
Today i talked with Radius Guys and they confirmed that on Radius this fucnction not exist and LDAP should be used
A is correct
https://kb.juniper.net/InfoCenter/index?page=content&id=KB21978&actp=search
It is D.
http://www.juniper.net/techpubs/en_US/junos/topics/concept/vpn-security-dynamic-tunnel-understanding.html
• Authentication is supported from a local profile. Attributes can be provided from a local address pool. Authentication and attributes can be provided from a RADIUS server.