ExamGecko
Login
Home / Cisco / 300-715 / List of questions
Ask Question

Cisco 300-715 Practice Test - Questions Answers, Page 9

List of questions

Question 81

Report
Export
Collapse

What should be considered when configuring certificates for BYOD?

The SAN field is populated with the end user name.

The SAN field is populated with the end user name.

The CN field is populated with the endpoint host name.

The CN field is populated with the endpoint host name.

An endpoint certificate is mandatory for the Cisco ISE BYOD.

An endpoint certificate is mandatory for the Cisco ISE BYOD.

An Android endpoint uses EST, whereas other operating systems use SCEP for enrollment.

An Android endpoint uses EST, whereas other operating systems use SCEP for enrollment.
Suggested answer: C
asked 07/10/2024
Simone Somacal
31 questions

Question 82

Report
Export
Collapse

A policy is being created in order to provide device administration access to the switches on a network. There is a requirement to ensure that if the session is not actively being used, after 10 minutes, it will be disconnected. Which task must be configured in order to meet this requirement?

session timeout

session timeout

idle time

idle time

monitor

monitor

set attribute as

set attribute as
Suggested answer: A

Explanation:

https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/admin_guide/b_ISE_admin_guide_24/m_admin_accesspolicy_settings.html#reference_0E24B8FBFAB248219E1194435670347F

asked 07/10/2024
Ben Ndlovu
37 questions

Question 83

Report
Export
Collapse

An administrator is attempting to replace the built-in self-signed certificates on a Cisco ISE appliance.

The CA is requesting some information about the appliance in order to sign the new certificate. What must be done in order to provide the CA this information?

Install the Root CA and intermediate CA.

Install the Root CA and intermediate CA.

Generate the CSR.

Generate the CSR.

Download the intermediate server certificate.

Download the intermediate server certificate.

Download the CA server certificate.

Download the CA server certificate.
Suggested answer: B
asked 07/10/2024
Tym Dom
41 questions

Question 84

Report
Export
Collapse

An organization is hosting a conference and must make guest accounts for several of the speakers attending. The conference ended two days early but the guest accounts are still being used to access the network. What must be configured to correct this?

Create an authorization rule denying sponsored guest access.

Create an authorization rule denying sponsored guest access.

Navigate to the Guest Portal and delete the guest accounts.

Navigate to the Guest Portal and delete the guest accounts.

Create an authorization rule denying guest access.

Create an authorization rule denying guest access.

Navigate to the Sponsor Portal and suspend the guest accounts.

Navigate to the Sponsor Portal and suspend the guest accounts.
Suggested answer: D
asked 07/10/2024
Carlos Roberto
52 questions

Question 85

Report
Export
Collapse

An administrator is configuring posture with Cisco ISE and wants to check that specific services are present on the workstations that are attempting to access the network. What must be configured to accomplish this goal?

Create a registry posture condition using a non-OPSWAT API version.

Create a registry posture condition using a non-OPSWAT API version.

Create an application posture condition using a OPSWAT API version.

Create an application posture condition using a OPSWAT API version.

Create a compound posture condition using a OPSWAT API version.

Create a compound posture condition using a OPSWAT API version.

Create a service posture condition using a non-OPSWAT API version.

Create a service posture condition using a non-OPSWAT API version.
Suggested answer: D
asked 07/10/2024
Jason Siemens
36 questions

Question 86

Report
Export
Collapse

An engineer is configuring 802.1X and wants it to be transparent from the users' point of view. The implementation should provide open authentication on the switch ports while providing strong levels of security for non-authenticated devices. Which deployment mode should be used to achieve this?

closed

closed

low-impact

low-impact

open

open

high-impact

high-impact
Suggested answer: B

Explanation:

https://www.lookingpoint.com/blog/cisco-ise-wired-802.1x-deploymentmonitormode#:~:text=Low%20impact%20mode%20works%20similar,DHCP%2C%20PXE%20boot%2C%20etc.

asked 07/10/2024
Velmurugan P
42 questions

Question 87

Report
Export
Collapse

What is the deployment mode when two Cisco ISE nodes are configured in an environment?

distributed

distributed

active

active

standalone

standalone

standard

standard
Suggested answer: A
asked 07/10/2024
Vijayakumar Dhandapani
42 questions

Question 88

Report
Export
Collapse

Which two roles are taken on by the administration person within a Cisco ISE distributed environment? (Choose two.)

backup

backup

secondary

secondary

standby

standby

primary

primary

active

active
Suggested answer: B, D
asked 07/10/2024
Christophe Troessaert
37 questions

Question 89

Report
Export
Collapse

A company is attempting to improve their BYOD policies and restrict access based on certain criteri a. The company's subnets are organized by building. Which attribute should be used in order to gain access based on location?

static group assignment

static group assignment

IP address

IP address

device registration status

device registration status

MAC address

MAC address
Suggested answer: A

Explanation:

https://www.cisco.com/c/en/us/td/docs/security/ise/2-1/admin_guide/b_ise_admin_guide_21/b_ise_admin_guide_20_chapter_010100.html#ID1353

asked 07/10/2024
Andy Hodges
39 questions

Question 90

Report
Export
Collapse

An engineer is migrating users from MAB to 802.1X on the network. This must be done during normal business hours with minimal impact to users. Which CoA method should be used?

Port Bounce

Port Bounce

Port Shutdown

Port Shutdown

Session Termination

Session Termination

Session Reauthentication

Session Reauthentication
Suggested answer: D
asked 07/10/2024
jonathan siu
41 questions
Total 242 questions
Go to page: of 25
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

An organization is hosting a conference and must make guest accounts for several of the speakers attending. The conference ended two days early but the guest accounts are still being used to access the network. What must be configured to correct this?
Refer to the exhibit. An engineer is configuring Cisco ISE for guest services They would like to have any unregistered guests redirected to the guest portal for authentication then have a CoA provide them with full access to the network that is segmented via firewalls Why is the given configuration failing to accomplish this goal?
An administrator is attempting to replace the built-in self-signed certificates on a Cisco ISE appliance. The CA is requesting some information about the appliance in order to sign the new certificate. What must be done in order to provide the CA this information?
What are two components of the posture requirement when configuring Cisco ISE posture? (Choose two)
DRAG DROP An engineer needs to configure a compliance policy on Cisco ISE to ensure that the latest encryption software is running on the C drive of all endpoints. Drag and drop the configuration steps from the left into the sequence on the right to accomplish this task.
An engineer is configuring 802.1X and wants it to be transparent from the users' point of view. The implementation should provide open authentication on the switch ports while providing strong levels of security for non-authenticated devices. Which deployment mode should be used to achieve this?
Which two probes must be enabled for the ARP cache to function in the Cisco ISE profile service so that a user can reliably bind the IP address and MAC addresses of endpoints? (Choose two.)
An administrator is configuring RADIUS on a Cisco switch with a key set to Cisc403012128 but is receiving the error "Authentication failed: 22040 Wrong password or invalid shared secret. "what must be done to address this issue?
An engineer has been tasked with standing up a new guest portal for customers that are waiting in the lobby. There is a requirement to allow guests to use their social media logins to access the guest network to appeal to more customers What must be done to accomplish this task?
A network engineer needs to deploy 802.1x using Cisco ISE in a wired network environment where thin clients download their system image upon bootup using PXE. For which mode must the switch ports be configured?