Cisco®
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
Scrum
All Vendors
  2. Home
  3. Exams
  4. Cisco®
  5. 300-715

Free 300-715 Exam Braindumps (page: 23)

Page 22 of 93
PDF with 367 Questions

Which two external identity stores support EAP-TLS and PEAP-TLS? (Choose two.)

  1. RSA SecurID
  2. RADIUS Token
  3. Active Directory
  4. Internal Database
  5. LDAP

Answer(s): C,E


Reference:

https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/214975-configure- eap-tls-authentication-with-is.html



An engineer deploys Cisco ISE and must configure Active Directory to then use information from Active Directory in an authorization policy.
Which two components must be configured, in addition to Active Directory groups, to achieve this goal? (Choose two.)

  1. Identity Source Sequences
  2. LDAP External Identity Sources
  3. Active Directory External Identity Sources
  4. Library Condition for Identity Group: User Identity Group
  5. Library Condition for External Identity: External Groups

Answer(s): C,E



Which deployment mode allows for one or more policy service nodes to be used for session failover?

  1. centralized
  2. secondary
  3. standalone
  4. distributed

Answer(s): D



An engineer is configuring 802.1X and is testing out their policy sets. After authentication, some endpoints are given an access-reject message but are still allowed onto the network.
What is causing this issue to occur?

  1. The authorization results for the endpoints include the Trusted security group tag.
  2. The authorization results for the endpoints include a dACL allowing access.
  3. The switch port is configured with authentication event server dead action authorize vlan.
  4. The switch port is configured with authentication open.

Answer(s): D






Post your Comments and Discuss Cisco® 300-715 exam with other Community members:

Exam Discussions & Posts