CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Cisco®
  5. 300-715

Free 300-715 Exam Braindumps (page: 15)

Page 15 of 81
PDF with 320 Questions

Refer to the exhibit.
Which component must be configured to apply the SGACL?

  1. secure server
  2. host
  3. egress router
  4. ingress router

Answer(s): C


Reference:

https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SY/configuration/guide/sy_swcg/trustsec.pdf



A laptop was stolen and a network engineer added it to the block list endpoint identity group.
What must be done on a new Cisco ISE deployment to redirect the laptop and restrict access?

  1. Select DROP under If Auth fail within the authentication policy.
  2. Ensure that access to port 8444 is allowed within the ACL.
  3. Ensure that access to port 8443 is allowed within the ACL.
  4. Select DenyAccess within the authentication policy.

Answer(s): B



When creating a policy within Cisco ISE for network access control, the administrator wants to allow different access restrictions based upon the wireless SSID to which the device is connecting.
Which policy condition must be used in order to accomplish this?

  1. Network Access NetworkDeviceName CONTAINS <SSID Name>
  2. DEVICE Device Type CONTAINS <SSID Name>
  3. Airespace Airespace-Wlan-Id CONTAINS <SSID Name>
  4. Radius Called-Station-ID CONTAINS <SSID Name>

Answer(s): D


Reference:

https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/115734-ise-policies-ssid-00.html



A company manager is hosting a conference. Conference participants must connect to an open guest SSID and only use a preassigned code that they enter into the guest portal prior to gaining access to the network.
How should the manager configure Cisco ISE to accomplish this goal?

  1. Create logins for each participant to give them sponsored access.
  2. Create entries in the guest identity group for all participants.
  3. Create an access code to be entered in the AUP mode.
  4. Create a registration code to be entered on the portal splash page.

Answer(s): C


Reference:

https://www.cisco.com/c/en/us/td/docs/security/ise/2-6/admin_guide/b_ISE_26_admin_guide/b_ISE_admin_26_guest.html



Page 15 of 81



Post your Comments and Discuss Cisco® 300-715 exam with other Community members:

Qorban commented on April 11, 2021
I paid in Derham and the process of payment and download was so fast and easy. The Test Engine called Xengine App came for free. I am stdying from that engine. For now I am not ready yet. But ones I go do my test I come back and write my score here so others can a more informed decision.
UNITED ARAB EMIRATES
upvote