cisco 300-715 online test

Implementing and Configuring Cisco Identity Services Engine (SISE)

What students need to know about the 300-715 exam

  • Total 82 Questions & Answers

Question 1 Topic 1

Topic 1
Which personas can a Cisco ISE node assume?

  • A. policy service, gatekeeping, and monitoring
  • B. administration, monitoring, and gatekeeping
  • C. administration, policy service, and monitoring
  • D. administration, policy service, gatekeeping
Answer:

C

Explanation:
Reference: https://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_dis_deploy.html

Discussions

Question 2 Topic 1

Topic 1
What occurs when a Cisco ISE distributed deployment has two nodes and the secondary node is deregistered?

  • A. The secondary node restarts.
  • B. The primary node restarts.
  • C. Both nodes restart.
  • D. The primary node becomes standalone.
Answer:

C

Discussions

Question 3 Topic 1

Topic 1
DRAG DROP
Drag the steps to configure a Cisco ISE node as a primary administration node from the left into the correct order on the
right.
Select and Place:

Answer:

Explanation:
Reference: https://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_dis_deploy.html

Discussions

Question 4 Topic 1

Topic 1
Which two features are available when the primary admin node is down and the secondary admin node has not been
promoted? (Choose two.)

  • A. new AD user 802.1X authentication
  • B. hotspot
  • C. posture
  • D. guest AUP
  • E. BYOD
Answer:

B D

Discussions

Question 5 Topic 1

Topic 1
Which supplicant(s) and server(s) are capable of supporting EAP-CHAINING?

  • A. Cisco Secure Services Client and Cisco Access Control Server
  • B. Cisco AnyConnect NAM and Cisco Identity Service Engine
  • C. Cisco AnyConnect NAM and Cisco Access Control Server
  • D. Windows Native Supplicant and Cisco Identity Service Engine
Answer:

B

Explanation:
Reference: https://www.cisco.com/c/en/us/support/docs/wireless-mobility/eap-fast/200322-Understanding-EAP-FAST-and-
Chaining-imp.html

Discussions

Question 6 Topic 1

Topic 1
What is a requirement for Feed Service to work?

  • A. TCP port 8080 must be opened between Cisco ISE and the feed server.
  • B. Cisco ISE has access to an internal server to download feed update.
  • C. Cisco ISE has a base license.
  • D. Cisco ISE has Internet access to download feed update.
Answer:

B

Discussions

Question 7 Topic 1

Topic 1
What is a method for transporting security group tags throughout the network?

  • A. by embedding the security group tag in the 802.1Q header
  • B. by the Security Group Tag Exchange Protocol
  • C. by enabling 802.1AE on every network device
  • D. by embedding the security group tag in the IP header
Answer:

B

Discussions

Question 8 Topic 1

Topic 1
An engineer is configuring a virtual Cisco ISE deployment and needs each persona to be on a different node.
Which persona should be configured with the largest amount of storage in this environment?

  • A. Monitoring and Troubleshooting
  • B. Policy Services
  • C. Primary Administration
  • D. Platform Exchange Grid
Answer:

A

Discussions

Question 9 Topic 1

Topic 1
In a standalone Cisco ISE deployment, which two personas are configured on a node? (Choose two.)

  • A. subscriber
  • B. primary
  • C. administration
  • D. publisher
  • E. policy service
Answer:

C E

Discussions

Question 10 Topic 1

Topic 1
A network engineer must enforce access control using special tags, without re-engineering the network design.
Which feature should be configured to achieve this in a scalable manner?

  • A. RBAC
  • B. dACL
  • C. SGT
  • D. VLAN
Answer:

C

Explanation:
Reference: https://www.cisco.com/c/dam/en/us/solutions/collateral/enterprise-networks/trustsec/branch-segmentation.pdf

Discussions
To page 2