You are using ASDM to verify an IPSec VPN configuration made by another administrator on an ASA. Please
click exhibit to answer the following questions.
Exhibit:

Which of the following will occur when a user attempts to establish a VPN connection to the ASA by using the
boson connection profile and the boson user account? (Select the best answer.)

A.
The user will be unable to establish a VPN connection.

B.
A banner will be displayed that states “Welcome to Boson Software!”

C.
The internal group policy will be applied to the connection.

D.
The VPN traffic will be sent by using only VLAN 2.

Explanation:
Of the choices available, a banner will be displayed that states “Welcome to Boson Software!” when a user
attempts to establish a virtual private network (VPN) connection to the Cisco Adaptive Security Appliance (ASA)
by using the boson connection profile and the boson user account. You can configure a banner message to be
displayed when users establish a VPN connection. This information is configured in the group policy that is
associated with the connection profile used to create the connection.
In this scenario, the boson connection profile is associated with the boson group policy. The boson group policy
is configured to inherit the banner settings from the default group policy, DfltGrpPolicy. You can view the banner
settings by clicking Configuration, clicking the Remote Access VPN button, expanding Network (Client) Access,
clicking Group Policies, and doubleclicking the boson group policy, which will open the Edit Internal Group
Policy dialog box, as shown in the following exhibit:

Therefore, to determine whether a banner message will be displayed, you should view the details of the
DfltGrpPolicy group policy. By viewing the details of the default group policy, you can determine that a banner
message has been configured that states “Welcome to Boson Software!” The following exhibit displays the
details of the DfltGrpPolicy group policy:Because the boson group policy inherits the Banner setting, VPN connections made by using connection
profiles that use the boson group policy will display the “Welcome to Boson Software!” banner message.
The boson user will be able to establish a VPN connection. There is nothing in the boson user’s profile settings
that would prevent the user from making a VPN connection. Moreover, the user will also be able to establish a
management session with the ASA, because the boson user has been granted administrative access to the
device.
The internal group policy will not apply to a VPN connection made by using the boson connection profile and
the boson user account. The boson connection profile is associated with the boson group policy, not the internal
group policy.

The VPN traffic will not be sent by using only virtual LAN (VLAN) 2 when a user makes a VPN connection by
using the boson connection profile and the boson user account. Although you can configure VLAN restrictions
for a group policy, none have been configured in this scenario.

Cisco: General VPN Setup: Adding or Editing a Remote Access Internal Group Policy, General Attribute