최신 300-715 무료덤프 - Cisco Implementing and Configuring Cisco Identity Services Engine
A network administrator must configura endpoints using an 802 1X authentication method with EAP identity certificates that are provided by the Cisco ISE. When the endpoint presents the identity certificate to Cisco ISE to validate the certificate, endpoints must be authorized to connect to the network. Which EAP type must be configured by the network administrator to complete this task?
정답: A
설명: (DumpTOP 회원만 볼 수 있음)
Guest users report repeated prompts to authenticate with the portal when connecting to a wireless network. An administrator must configure Cisco ISE to reduce the number of prompts.
The solution must meet the requirements:
- Users must be authenticated once.
- When reconnecting to the visitor network, users do not need to be
redirected to the login page.
Which action completes the configuration?
The solution must meet the requirements:
- Users must be authenticated once.
- When reconnecting to the visitor network, users do not need to be
redirected to the login page.
Which action completes the configuration?
정답: D
Drag and Drop Question
A security engineer configures a Cisco Catalyst switch to use Cisco TrustSec. The engineer must define the PAC key to authenticate the switch to Cisco ISE. Drag and drop the commands from the left into sequence on the right. Not all options are used.
A security engineer configures a Cisco Catalyst switch to use Cisco TrustSec. The engineer must define the PAC key to authenticate the switch to Cisco ISE. Drag and drop the commands from the left into sequence on the right. Not all options are used.
정답:
A network administrator has just added a front desk receptionist account to the Cisco ISE Guest Service sponsor group.
Using the Cisco ISE Guest Sponsor Portal, which guest services can the receptionist provide?
Using the Cisco ISE Guest Sponsor Portal, which guest services can the receptionist provide?
정답: D
설명: (DumpTOP 회원만 볼 수 있음)
An administrator is configuring a Cisco ISE posture agent in the client provisioning policy and needs to ensure that the posture policies that interact with clients are monitored, and end users are required to comply with network usage rules. Which two resources must be added in Cisco ISE to accomplish this goal? (Choose two)
정답: A,D
설명: (DumpTOP 회원만 볼 수 있음)
An organization is migrating its current guest network to Cisco ISE and has 1000 guest users in the current database. There are no resources to enter this information into the Cisco ISE database manually.
What must be done to accomplish this task efficiently?
What must be done to accomplish this task efficiently?
정답: B
설명: (DumpTOP 회원만 볼 수 있음)
A network engineer needs to ensure that the access credentials are not exposed during the
802.1x authentication among components. Which two protocols should complete this task?
802.1x authentication among components. Which two protocols should complete this task?
정답: A,C
설명: (DumpTOP 회원만 볼 수 있음)
An engineer is configuring a new Cisco ISE node. The Device Admin service must run on this node to handle authentication requests for network device access via TACACS+. Which persona must be enabled on this node to perform this function?
정답: A
An administrator is configuring a new profiling policy in Cisco ISE for a printer type that is missing from the profiler feed. The logical profile Printers must be used in the authorization rule and the rule must be hit. What must be done to ensure that this configuration will be successful?
정답: C
Refer to the exhibit. An engineer is configuring a client but cannot authenticate to Cisco ISE.
During troubleshooting, the show authentication sessions command was issued to display the authentication status of each port.
Which command gives additional information to help identify the problem with the authentication?
During troubleshooting, the show authentication sessions command was issued to display the authentication status of each port.
Which command gives additional information to help identify the problem with the authentication?
정답: A
Which two task types are included in the Cisco ISE common tasks support for TACACS+ profiles? (Choose two.)
정답: C,E
설명: (DumpTOP 회원만 볼 수 있음)
A network engineer has been tasked with enabling a switch to support standard web authentication for Cisco ISE. This must include the ability to provision for URL redirection on authentication. Which two commands must be entered to meet this requirement? (Choose two)
정답: B,D
설명: (DumpTOP 회원만 볼 수 있음)
In which two ways can users and endpoints be classified for TrustSec? (Choose two)
정답: B,E
설명: (DumpTOP 회원만 볼 수 있음)
An engineer is configuring a dedicated SSID for onboarding devices.
Which SSID type accomplishes this configuration?
Which SSID type accomplishes this configuration?
정답: D
설명: (DumpTOP 회원만 볼 수 있음)
What are two differences of TACACS+ compared to RADIUS? (Choose two.)
정답: A,B
The security engineer for a company has recently deployed Cisco ISE to perform centralized authentication of all network device logins using TACACSs+ against the local AD domain. Some of the other network engineers are having a hard time remembering to enter their AD account password instead of the local admin password that they have used for years. The security engineer wants to change the password prompt to "Use Local AD Password:" as a way of providing a hint to the network engineers when logging in. Under which page in Cisco ISE would this change be made?
정답: B
Using the SAML protocol, an administrator must configure the Cisco ISE Sponsor portal to authenticate users with an external Microsoft Active Directory Federation Services server. The configurations were performed:
- created a new SAML identity provider profile in Cisco ISE
- exported the service provider information
- configured all the required Active Directory Federation Services
configurations
- imported the Active Directory Federation Services metadata
- configured groups in the new SAML identity provider profile
- added attributes to the new SAML identity provider profile
- configured Advanced Settings in the new SAML identity provider
profile
Which two actors must be taken to complete the configuration? (Choose two.)
- created a new SAML identity provider profile in Cisco ISE
- exported the service provider information
- configured all the required Active Directory Federation Services
configurations
- imported the Active Directory Federation Services metadata
- configured groups in the new SAML identity provider profile
- added attributes to the new SAML identity provider profile
- configured Advanced Settings in the new SAML identity provider
profile
Which two actors must be taken to complete the configuration? (Choose two.)
정답: C,D