Login
Login

300-715 Exam Questions

Total 240 Questions

Last Updated Exam : 6-Apr-2025

Which protocol must be allowed for a BYOD device to access the BYOD portal?


A.

HTTP


B.

SMTP


C.

HTTPS


D.

SSH





Which default endpoint identity group does an endpoint that does not match any profile in Cisco ISE become a member of?


A.

Endpoint


B.

unknown


C.

blacklist


D.

white list


E.

profiled





Which command displays all 802 1X/MAB sessions that are active on the switch ports of a Cisco Catalyst switch?


A.

show authentication sessions output


B.

Show authentication sessions


C.

show authentication sessions interface Gi 1/0/x


D.

show authentication sessions interface Gi1/0/x output





Drag the steps to configure a Cisco ISE node as a primary administration node from the left into the correct order on the night.





Which two ports do network devices typically use for CoA? (Choose two )


A.

443


B.

19005


C.

8080


D.

3799


E.

1700





What is needed to configure wireless guest access on the network?


A.

endpoint already profiled in ISE


B.

WEBAUTH ACL for redirection


C.

valid user account in Active Directory


D.

Captive Portal Bypass turned on





What are two benefits of TACACS+ versus RADIUS for device administration? (Choose two )


A.

TACACS+ supports 802.1X, and RADIUS supports MAB


B.

TACACS+ uses UDP, and RADIUS uses TCP


C.

TACACS+ has command authorization, and RADIUS does not.


D.

TACACS+ provides the service type, and RADIUS does not


E.

TACACS+ encrypts the whole payload, and RADIUS encrypts only the password





What is the purpose of the ip http server command on a switch?


A.

It enables the https server for users for web authentication


B.

It enables MAB authentication on the switch


C.

It enables the switch to redirect users for web authentication


D.

It enables dot1x authentication on the switch





Which Cisco ISE service allows an engineer to check the compliance of endpoints before connecting to the network?


A.

personas


B.

qualys


C.

nexpose


D.

posture





Which RADIUS attribute is used to dynamically assign the Inactivity active timer for MAB users from the Cisco ISE node?


A.

session timeout


B.

idle timeout


C.

radius-server timeout


D.

termination-action






Cisco 300-715 Exam Details


Exam Code: 300-715
Exam Name: Implementing and Configuring Cisco Identity Services Engine (SISE)
Certification Name: CCNP Security
Certification Provider: Cisco
Exam Questions: 55–65 questions
Exam Time: 90 minutes
Passing Score: 800–850

Copyright © 2025 - All Rights Reserved