Home Exams
Log In Sign Up
Exams > Cisco > 300-715: Implementing and Configuring Cisco Identity Services Engine (300-715 SISE)
300-715: Implementing and Configuring Cisco Identity Services Engine (300-715 SISE)
Page 9 out of 19 pages Questions 81-90 out of 184 questions
Question#81

Which term refers to an endpoint agent that tries to join an 802.1X-enabled network?

  • A. EAP server
  • B. authenticator
  • C. supplicant
  • D. client
Discover Answer Hide Answer

C

Question#82

Which port does Cisco ISE use for native supplicant provisioning of a Windows laptop?

  • A. TCP 8905
  • B. TCP 8909
  • C. TCP 443
  • D. UDP 1812
Discover Answer Hide Answer

B
Reference:
https://www.cisco.com/c/en/us/td/docs/security/ise/2-1/admin_guide/b_ise_admin_guide_21/b_ise_admin_guide_20_chapter_010101.html

Question#83

DRAG DROP -
Drag the Cisco ISE node types from the left onto the appropriate purposes on the right.
Select and Place:

Discover Answer Hide Answer


Question#84

What must match between Cisco ISE and the network access device to successfully authenticate endpoints?

  • A. shared secret
  • B. profile
  • C. certificate
  • D. SNMP version
Discover Answer Hide Answer

A
Reference:
https://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_man_network_devices.html

Question#85

When planning for the deployment of Cisco ISE, an organization's security policy dictates that they must use network access authentication via RADIUS. It also states that the deployment needs to provide an adequate amount of security and visibility for the hosts on the network.
Why should the engineer configure MAB in this situation?

  • A. The Cisco switches only support MAB.
  • B. MAB provides the strongest form of authentication available.
  • C. MAB provides user authentication.
  • D. The devices in the network do not have a supplicant.
Discover Answer Hide Answer

D

Question#86

An organization is implementing Cisco ISE posture services and must ensure that a host-based firewall is in place on every Windows and Mac computer that attempts to access the network. They have multiple vendors' firewall applications for their devices, so the engineers creating the policies are unable to use a specific application check in order to validate the posture for this.
What should be done to enable this type of posture check?

  • A. Enable the default application condition to identify the applications installed and validate the firewall app.
  • B. Enable the default firewall condition to check for any vendor firewall application.
  • C. Use a compound condition to look for the Windows or Mac native firewall applications.
  • D. Use the file registry condition to ensure that the firewall is installed and running appropriately.
Discover Answer Hide Answer

B

Question#87

An administrator is configuring posture with Cisco ISE and wants to check that specific services are present on the workstations that are attempting to access the network.
What must be configured to accomplish this goal?

  • A. Create a compound posture condition using a OPSWAT API version.
  • B. Create an application posture condition using a OPSWAT API version.
  • C. Create a registry posture condition using a non-OPSWAT API version.
  • D. Create a service posture condition using a non-OPSWAT API version.
Discover Answer Hide Answer

C
Reference:
https://www.cisco.com/c/en/us/td/docs/security/ise/2-1/admin_guide/b_ise_admin_guide_21/b_ise_admin_guide_20_chapter_010001.html

Question#88

What is a function of client provisioning?

  • A. It checks the existence, date, and versions of the file on a client.
  • B. It checks a dictionary attribute with a value.
  • C. It ensures that endpoints receive the appropriate posture agents.
  • D. It ensures an application process is running on the endpoint.
Discover Answer Hide Answer

C
Reference:
https://www.cisco.com/c/en/us/td/docs/security/ise/1-3/admin_guide/b_ise_admin_guide_13/b_ise_admin_guide_sample_chapter_010111.html

Question#89

A network administrator must use Cisco ISE to check whether endpoints have the correct version of antivirus installed.
Which action must be taken to allow this capability?

  • A. Create a Cisco AnyConnect Network Visibility Module configuration profile to send the antivirus information of the endpoints to Cisco ISE.
  • B. Configure Cisco ISE to push the HostScan package to the endpoints to check for the antivirus version.
  • C. Configure a native supplicant profile to be used for checking the antivirus version.
  • D. Create a Cisco AnyConnect configuration within Cisco ISE for the Compliance Module and associated configuration files.
Discover Answer Hide Answer

A

Question#90

MacOS users are complaining about having to read through wordy instructions when remediating their workstations to gain access to the network.
Which alternate method should be used to tell users how to remediate?

  • A. file distribution
  • B. executable
  • C. message text
  • D. URL link
Discover Answer Hide Answer

D

chevron rightPrevious Nextchevron right
Email: support@exam-data.com
Copyright © 2024 Exam Data. All rights reserved.
Home Exams
chevron
Public Agreement Privacy Policy Sales and Refunds