All About Accurate 300-715 Free Draindumps

NEW QUESTION 1
Which term refers to an endpoint agent that tries to join an 802.1X- enabled network?

• A. EAP server
• B. authenticator
• C. supplicant
• D. client

Answer: C

NEW QUESTION 2
Which supplicant(s) and server(s) are capable of supporting EAP-CHAINING?

• A. Cisco Secure Services Client and Cisco Access Control Server
• B. Cisco AnyConnect NAM and Cisco Identity Service Engine
• C. Cisco AnyConnect NAM and Cisco Access Control Server
• D. Windows Native Supplicant and Cisco Identity Service Engine

Answer: B

Explanation:
Reference: https://www.cisco.com/c/en/us/support/docs/wireless-mobility/eap-fast/200322-Understanding-EAP-FAST-and-Chaining-imp.html

NEW QUESTION 3
Which personas can a Cisco ISE node assume?

• A. policy service, gatekeeping, and monitoring
• B. administration, monitoring, and gatekeeping
• C. administration, policy service, and monitoring
• D. administration, policy service, gatekeeping

Answer: C

Explanation:
Reference: https://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_dis_deploy.html

NEW QUESTION 4
Which interface-level command is needed to turn on 802.1X authentication?

• A. dot1x system-auth-control
• B. dot1x pae authenticator
• C. aaa server radius dynamic-author
• D. authentication host-mode single- host

Answer: B

Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/12-2/31sg/configuration/guide/conf/dot1x.html

NEW QUESTION 5
Which statement about configuring certificates for BYOD is true?

• A. The SAN field is populated with the end user name.
• B. The CN field is populated with the endpoint host name.
• C. An endpoint certificate is mandatory for the Cisco ISE BYOD.
• D. An Android endpoint uses EST, whereas other operating systems use SCEP for enrollment.

Answer: C

NEW QUESTION 6
Which Cisco ISE service allows an engineer to check the compliance of endpoints before connecting to the network?

• A. qualys
• B. posture
• C. personas
• D. nexpose

Answer: B

NEW QUESTION 7
During BYOD flow, from where does a Microsoft Windows PC download the Network Setup Assistant?

• A. Microsoft App Store
• B. Cisco App Store
• C. Cisco ISE directly
• D. Native OTA functionality

Answer: C

Explanation:
Reference: https://ciscocustomer.lookbookhq.com/iseguidedjourney/BYOD-configuration

NEW QUESTION 8
Which two fields are available when creating an endpoint on the context visibility page of Cisco ISE? (Choose two.)

• A. Security Group Tag
• B. Endpoint Family
• C. Policy Assignment
• D. Identity Group Assignment
• E. IP Address

Answer: CD

Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/admin_guide/b_ise_admin_guide_22/b_ise_admin_guide_22_chapter_010101.html

NEW QUESTION 9
Refer to the exhibit.

Which command is typed within the CLI of a switch to view the troubleshooting output?

• A. show authentication sessions mac 000e.84af.59af details
• B. show authentication registrations
• C. show authentication interface gigabitethernet2/0/36
• D. show authentication sessions method

Answer: A

NEW QUESTION 10
What does the dot1x system-auth-control command do?

• A. globally enables 802.1x
• B. causes a network access switch not to track 802.1x sessions
• C. enables 802.1x on a network access device interface
• D. causes a network access switch to track 802.1x sessions

Answer: A

Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/XE3-8-0E/15-24E/configuration/guide/xe-380-configuration/dot1x.html

NEW QUESTION 11
Which two features are available when the primary admin node is down and the secondary admin node has not been promoted? (Choose two.)

• A. new AD user 802.1X authentication
• B. hotspot
• C. posture
• D. guest AUP
• E. BYOD

Answer: BD

NEW QUESTION 12
What is a valid guest portal type?

• A. Sponsor
• B. Sponsored-Guest
• C. Captive-Guest
• D. My Devices

Answer: B

Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/security/ise/1-3/admin_guide/b_ise_admin_guide_13/b_ise_admin_guide_sample_chapter_01111.html

NEW QUESTION 13
Which three default endpoint identity groups does Cisco ISE create? (Choose three.)

• A. endpoint
• B. unknown
• C. blacklist
• D. profiled
• E. whitelist

Answer: BCD

Explanation:
Reference: https://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_man_identities.html#wp1203054

NEW QUESTION 14
Which port does Cisco ISE use for native supplicant provisioning of a Windows laptop?

• A. TCP 8905
• B. TCP 8909
• C. TCP 443
• D. UDP 1812

Answer: B

Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/security/ise/2-1/admin_guide/b_ise_admin_guide_21/b_ise_admin_guide_20_chapter_010101.html

NEW QUESTION 15
Which two ports must be open between Cisco ISE and the client when you configure posture on Cisco ISE? (Choose two.)

• A. TCP 80
• B. TCP 8905
• C. TCP 8443
• D. TCP 8906
• E. TCP 443

Answer: BC

Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/security/ise/2-0/installation_guide/b_ise_InstallationGuide20/Cisco_SNS_3400_Series_Appliance_Ports_Reference.html

NEW QUESTION 16
What service can be enabled on the Cisco ISE node to identify the types of devices connecting to a network?

• A. profiling
• B. central web authentication
• C. MAB
• D. posture

Answer: A

Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/security/ise/2-1/admin_guide/b_ise_admin_guide_21/b_ise_admin_guide_20_chapter_010100.html

NEW QUESTION 17
DRAG DROP
Drag the steps to configure a Cisco ISE node as a primary administration node from the left into the correct order on the right.

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:
Reference: https://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_dis_deploy.html

NEW QUESTION 18
If a user reports a device lost or stolen, which portal should be used to prevent the device from accessing the network while still providing information about why the device is blocked?

• A. Client Provisioning
• B. BYOD
• C. Guest
• D. Blacklist

Answer: D

Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/security/ise/1-3/admin_guide/b_ise_admin_guide_13/b_ise_admin_guide_sample_chapter_010000.html

NEW QUESTION 19
What is a characteristic of the UDP protocol?

• A. UDP can detect when a server is down.
• B. UDP can detect when a server is slow.
• C. UDP offers best-effort delivery.
• D. UDP offers information about a non-existent server.

Answer: C

NEW QUESTION 20
Which advanced option within a WLAN must be enabled to trigger Central Web Authentication for Wireless users on AireOS controller?

• A. DHCP server
• B. override Interface ACL
• C. static IP tunneling
• D. AAA override

Answer: D

Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/wireless/controller/7-4/configuration/guides/consolidated/b_cg74_CONSOLIDATED/b_cg74_CONSOLIDATED_chapter_010110111.html

NEW QUESTION 21
Which two probes must be enabled for the ARP cache to function in the Cisco ISE profiling service so that a user can reliably bind the IP addresses and MAC addresses of endpoints? (Choose two.)

• A. SNMP
• B. HTTP
• C. RADIUS
• D. DHCP
• E. NetFlow

Answer: CD

Explanation:
Reference: https://www.cisco.com/c/en/us/td/docs/security/ise/2-1/admin_guide/b_ise_admin_guide_21/b_ise_admin_guide_20_chapter_010100.html

NEW QUESTION 22
What is the purpose of the ip http server
command on a switch?

• A. It enables the https server for users for web authentication.
• B. It enables dot1x authentication on the switch.
• C. It enables MAB authentication on the switch.
• D. It enables the switch to redirect users for web authentication.

Answer: C

NEW QUESTION 23
......