Drag the Cisco ISE node types from the left onto the appropriate purposes on the right.
Monitoring = provides advanced monitoring and troubleshooting tools that you can use to effectively manage your network and resources
Policy Service = provides network access, posture, guest access, client provisioning, and profiling services. This persona evaluates the policies and makes all the decisions. Administration = manages all system-related configuration and configurations that relate to functionality such as authentication, authorization, auditing, and so on pxGrid = shares context-sensitive information from Cisco ISE to subscribers
https://www.cisco.com/c/en/us/td/docs/security/ise/1-
4/admin_guide/b_ise_admin_guide_14/b_ise_admin_guide_14_chapter_011.html#ID57
Which two components are required for creating a Native Supplicant Profile within a BYOD flow? (Choose two )
A.
Windows Settings
B.
Connection Type
C.
iOS Settings
D.
Redirect ACL
E.
Operating System
iOS Settings
Operating System
Which two ports must be open between Cisco ISE and the client when you configure posture on Cisco ISE? (Choose two).
A.
TCP 8443
B.
TCP 8906
C.
TCP 443
D.
TCP 80
E.
TCP 8905
TCP 80
TCP 8905
Which two features must be used on Cisco ISE to enable the TACACS. feature? (Choose two)
A.
Device Administration License
B.
Server Sequence
C.
Command Sets
D.
Enable Device Admin Service
E.
External TACACS Servers
Device Administration License
Enable Device Admin Service
Which supplicant(s) and server(s) are capable of supporting EAP-CHAINING?
A.
Cisco AnyConnect NAM and Cisco Identity Service Engine
B.
Cisco AnyConnect NAM and Cisco Access Control Server
C.
Cisco Secure Services Client and Cisco Access Control Server
D.
Windows Native Supplicant and Cisco Identity Service Engine
Cisco AnyConnect NAM and Cisco Identity Service Engine
Which advanced option within a WLAN must be enabled to trigger Central Web Authentication for Wireless users on AireOS controller?
A.
DHCP server
B.
static IP tunneling
C.
override Interface ACL
D.
AAA override
DHCP server
What does the dot1x system-auth-control command do?
A.
causes a network access switch not to track 802.1x sessions
B.
globally enables 802.1x
C.
enables 802.1x on a network access device interface
D.
causes a network access switch to track 802.1x sessions
globally enables 802.1x
What are two requirements of generating a single signing in Cisco ISE by using a certificate provisioning portal, without generating a certificate request? (Choose two )
A.
Location the CSV file for the device MAC
B.
Select the certificate template
C.
Choose the hashing method
D.
Enter the common name
E.
Enter the IP address of the device
Select the certificate template
Enter the common name
What is a valid guest portal type?
A.
Sponsored-Guest
B.
My Devices
C.
Sponsor
D.
Captive-Guest
Sponsored-Guest
What occurs when a Cisco ISE distributed deployment has two nodes and the secondary node is deregistered?
A.
The primary node restarts
B.
The secondary node restarts.
C.
The primary node becomes standalone
D.
Both nodes restart
Both nodes restart
https://www.cisco.com/c/en/us/td/docs/security/ise/1-1-1/installation_guide/ise_install_guide/ise_deploy.html
if your deployment has two nodes and you deregister the secondary node, both nodes in this primary-secondary pair are restarted. (The former primary and secondary nodes become standalone.)
Page 4 out of 16 Pages |
Previous |