Cisco 300-715 exam revealed answer (P. 3)

Win IT Exam with Last Dumps 2024

Cisco 300-715 Exam

Page 3/15

Viewing Questions 21 30 out of 148 Questions

20.00%

Question 21

A network administrator must configure Cisco ISE Personas in the company to share session information via syslog.Which Cisco ISE personas must be added to syslog receivers to accomplish this goal?

A. admin

B. policy services

C. monitor

D. pxGrid

Question 22

What is the maximum number of PSN nodes supported in a medium-sized deployment?

A. two

B. three

C. five

D. eight

Question 23

How is policy services node redundancy achieved in a deployment?

A. by creating a node group

B. by deploying both primary and secondary node

C. by enabling VIP

D. by utilizing RADIUS server list on the NAD

Question 24

Which two fields are available when creating an endpoint on the context visibility page of Cisco ISE? (Choose two.)

A. Security Group Tag

B. Endpoint Family

C. Policy Assignment

D. Identity Group Assignment

E. IP Address

Question 25

In which two ways can users and endpoints be classified for TrustSec? (Choose two.)

A. VLAN

B. dynamic

C. QoS

D. SGACL

E. SXP

Question 26

When configuring Active Directory groups, what does the Cisco ISE use to resolve ambiguous group names?

A. MIB

B. SID

C. MAB

D. TGT

Question 27

Which permission is common to the Active Directory Join and Leave operations?

A. Remove the Cisco ISE machine account from the domain.

B. Search Active Directory to see if a Cisco ISE machine account already exists.

C. Set attributes on the Cisco ISE machine account.

D. Create a Cisco ISE machine account in the domain if the machine account does not already exist.

Question 28

Which interface-level command is needed to turn on 802.1X authentication?

A. dot1x system-auth-control

B. dot1x pae authenticator

C. aaa server radius dynamic-author

D. authentication host-mode single-host

Question 29

Which RADIUS attribute is used to dynamically assign the Inactivity active timer for MAB users from the Cisco ISE node?

Win IT Exam with Last Dumps 2024

Cisco 300-715 Exam

Page 3/15

Viewing Questions 21 30 out of 148 Questions

A network administrator must configure Cisco ISE Personas in the company to share session information via syslog.Which Cisco ISE personas must be added to syslog receivers to accomplish this goal?

A. admin

B. policy services

C. monitor

D. pxGrid

What is the maximum number of PSN nodes supported in a medium-sized deployment?

A. two

B. three

C. five

D. eight

How is policy services node redundancy achieved in a deployment?

A. by creating a node group

B. by deploying both primary and secondary node

C. by enabling VIP

D. by utilizing RADIUS server list on the NAD

Which two fields are available when creating an endpoint on the context visibility page of Cisco ISE? (Choose two.)

A. Security Group Tag

B. Endpoint Family

C. Policy Assignment

D. Identity Group Assignment

E. IP Address

In which two ways can users and endpoints be classified for TrustSec? (Choose two.)

A. VLAN

B. dynamic

C. QoS

D. SGACL

E. SXP

When configuring Active Directory groups, what does the Cisco ISE use to resolve ambiguous group names?

A. MIB

B. SID

C. MAB

D. TGT

Which permission is common to the Active Directory Join and Leave operations?

A. Remove the Cisco ISE machine account from the domain.

B. Search Active Directory to see if a Cisco ISE machine account already exists.

C. Set attributes on the Cisco ISE machine account.

D. Create a Cisco ISE machine account in the domain if the machine account does not already exist.

Which interface-level command is needed to turn on 802.1X authentication?

A. dot1x system-auth-control

B. dot1x pae authenticator

C. aaa server radius dynamic-author

D. authentication host-mode single-host

Which RADIUS attribute is used to dynamically assign the Inactivity active timer for MAB users from the Cisco ISE node?

A. session-timeout

B. termination-action

C. radius-server timeout

D. idle-timeout

What does the dot1x system-auth-control command do?

A. globally enables 802.1x

B. causes a network access switch not to track 802.1x sessions

C. enables 802.1x on a network access device interface

D. causes a network access switch to track 802.1x sessions