300-715 Exam Questions

Total 152 Questions

Last Updated Exam : 16-Dec-2024

Drag the Cisco ISE node types from the left onto the appropriate purposes on the right.






Monitoring = provides advanced monitoring and troubleshooting tools that you can use to effectively manage your network and resources
Policy Service = provides network access, posture, guest access, client provisioning, and profiling services. This persona evaluates the policies and makes all the decisions. Administration = manages all system-related configuration and configurations that relate to functionality such as authentication, authorization, auditing, and so on pxGrid = shares context-sensitive information from Cisco ISE to subscribers
https://www.cisco.com/c/en/us/td/docs/security/ise/1-
4/admin_guide/b_ise_admin_guide_14/b_ise_admin_guide_14_chapter_011.html#ID57

Which two components are required for creating a Native Supplicant Profile within a BYOD flow? (Choose two )


A.

Windows Settings


B.

Connection Type


C.

iOS Settings


D.

Redirect ACL


E.

Operating System





C.
  

iOS Settings



E.
  

Operating System



Which two ports must be open between Cisco ISE and the client when you configure posture on Cisco ISE? (Choose two).


A.

TCP 8443


B.

TCP 8906


C.

TCP 443


D.

TCP 80


E.

TCP 8905





D.
  

TCP 80



E.
  

TCP 8905



Which two features must be used on Cisco ISE to enable the TACACS. feature? (Choose two)


A.

Device Administration License


B.

Server Sequence


C.

Command Sets


D.

Enable Device Admin Service


E.

External TACACS Servers





A.
  

Device Administration License



D.
  

Enable Device Admin Service



Which supplicant(s) and server(s) are capable of supporting EAP-CHAINING?


A.

Cisco AnyConnect NAM and Cisco Identity Service Engine


B.

Cisco AnyConnect NAM and Cisco Access Control Server


C.

Cisco Secure Services Client and Cisco Access Control Server


D.

Windows Native Supplicant and Cisco Identity Service Engine





A.
  

Cisco AnyConnect NAM and Cisco Identity Service Engine



Which advanced option within a WLAN must be enabled to trigger Central Web Authentication for Wireless users on AireOS controller?


A.

DHCP server


B.

static IP tunneling


C.

override Interface ACL


D.

AAA override





A.
  

DHCP server



What does the dot1x system-auth-control command do?


A.

causes a network access switch not to track 802.1x sessions


B.

globally enables 802.1x


C.

enables 802.1x on a network access device interface


D.

causes a network access switch to track 802.1x sessions





B.
  

globally enables 802.1x



What are two requirements of generating a single signing in Cisco ISE by using a certificate provisioning portal, without generating a certificate request? (Choose two )


A.

Location the CSV file for the device MAC


B.

Select the certificate template


C.

Choose the hashing method


D.

Enter the common name


E.

Enter the IP address of the device





B.
  

Select the certificate template



D.
  

Enter the common name



What is a valid guest portal type?


A.

Sponsored-Guest


B.

My Devices


C.

Sponsor


D.

Captive-Guest





A.
  

Sponsored-Guest



What occurs when a Cisco ISE distributed deployment has two nodes and the secondary node is deregistered?


A.

The primary node restarts


B.

The secondary node restarts.


C.

The primary node becomes standalone


D.

Both nodes restart





D.
  

Both nodes restart



https://www.cisco.com/c/en/us/td/docs/security/ise/1-1-1/installation_guide/ise_install_guide/ise_deploy.html
if your deployment has two nodes and you deregister the secondary node, both nodes in this primary-secondary pair are restarted. (The former primary and secondary nodes become standalone.)


Page 4 out of 16 Pages
Previous