Cisco 300-715 Practice Test - Questions Answers, Page 9
Question list
List of questions
Related questions
What should be considered when configuring certificates for BYOD?
The SAN field is populated with the end user name.
The CN field is populated with the endpoint host name.
An endpoint certificate is mandatory for the Cisco ISE BYOD.
An Android endpoint uses EST, whereas other operating systems use SCEP for enrollment.
A policy is being created in order to provide device administration access to the switches on a network. There is a requirement to ensure that if the session is not actively being used, after 10 minutes, it will be disconnected. Which task must be configured in order to meet this requirement?
session timeout
idle time
monitor
set attribute as
An administrator is attempting to replace the built-in self-signed certificates on a Cisco ISE appliance.
The CA is requesting some information about the appliance in order to sign the new certificate. What must be done in order to provide the CA this information?
Install the Root CA and intermediate CA.
Generate the CSR.
Download the intermediate server certificate.
Download the CA server certificate.
An organization is hosting a conference and must make guest accounts for several of the speakers attending. The conference ended two days early but the guest accounts are still being used to access the network. What must be configured to correct this?
Create an authorization rule denying sponsored guest access.
Navigate to the Guest Portal and delete the guest accounts.
Create an authorization rule denying guest access.
Navigate to the Sponsor Portal and suspend the guest accounts.
An administrator is configuring posture with Cisco ISE and wants to check that specific services are present on the workstations that are attempting to access the network. What must be configured to accomplish this goal?
Create a registry posture condition using a non-OPSWAT API version.
Create an application posture condition using a OPSWAT API version.
Create a compound posture condition using a OPSWAT API version.
Create a service posture condition using a non-OPSWAT API version.
An engineer is configuring 802.1X and wants it to be transparent from the users' point of view. The implementation should provide open authentication on the switch ports while providing strong levels of security for non-authenticated devices. Which deployment mode should be used to achieve this?
closed
low-impact
open
high-impact
What is the deployment mode when two Cisco ISE nodes are configured in an environment?
distributed
active
standalone
standard
Which two roles are taken on by the administration person within a Cisco ISE distributed environment? (Choose two.)
backup
secondary
standby
primary
active
A company is attempting to improve their BYOD policies and restrict access based on certain criteri a. The company's subnets are organized by building. Which attribute should be used in order to gain access based on location?
static group assignment
IP address
device registration status
MAC address
An engineer is migrating users from MAB to 802.1X on the network. This must be done during normal business hours with minimal impact to users. Which CoA method should be used?
Port Bounce
Port Shutdown
Session Termination
Session Reauthentication
Question