300-715試験無料問題集「Cisco Implementing and Configuring Cisco Identity Services Engine 認定」
An organization has a fully distributed Cisco ISE deployment. When implementing probes, an administrator must scan for unknown endpoints to learn the IP-to-MAC address bindings. The scan is complete on one FPSN, but the information is not available on the others.
What must be done to make the information available?
What must be done to make the information available?
正解:B
解答を投票する
解説: (GoShiken メンバーにのみ表示されます)
An endpoint with the MAC address 04:85:70:26:64:AB attempts to connect to the network. The security administrator wants to ensure that before authentication, only limited access is provided for services including DHCP and DNS Full network access is only granted upon successful
802.1X authentication. Which ISE deployment mode should the administrator configure to meet the requirements?
802.1X authentication. Which ISE deployment mode should the administrator configure to meet the requirements?
正解:D
解答を投票する
A Cisco ISE administrator needs to ensure that guest endpoint registrations are only valid for 1 day. When testing the guest policy flow, the administrator sees that the Cisco ISE does not delete the endpoint in the Guest Endpoints identity store after one day and allows access to the guest network after that period. Which configuration is causing this problem?
正解:B
解答を投票する
An engineer must organize endpoints in a Cisco ISE identity management store to improve the operational management of IP phone endpoints. The endpoints must meet these requirements:
- classify endpoints for finance, sales, and marketing departments
- tag each endpoint as profiled
Which action organizes the endpoints?
- classify endpoints for finance, sales, and marketing departments
- tag each endpoint as profiled
Which action organizes the endpoints?
正解:D
解答を投票する
Users in an organization report issues about having to remember multiple usernames and passwords. The network administrator wants the existing Cisco ISE deployment to utilize an external identity source to alleviate this issue.
Which two requirements must be met to implement this change? (Choose two.)
Which two requirements must be met to implement this change? (Choose two.)
正解:A,B
解答を投票する
解説: (GoShiken メンバーにのみ表示されます)
A Cisco ISE administrator needs to ensure that guest endpoint registrations are only valid for one day. When testing the guest policy flow, the administrator sees that the Cisco ISE does not delete the endpoint in the Guest Endpoints identity store after one day and allows access to the guest network after that period. Which configuration is causing this problem?
正解:B
解答を投票する
An administrator is trying to collect metadata information about the traffic going across the network to gam added visibility into the hosts. This Information will be used to create profiling policies for devices us mg Cisco ISE so that network access policies can be used.
What must be done to accomplish this task?
What must be done to accomplish this task?
正解:B
解答を投票する
解説: (GoShiken メンバーにのみ表示されます)