Cisco®
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
Scrum
All Vendors
  2. Home
  3. Exams
  4. Cisco®
  5. 300-715

Free 300-715 Exam Braindumps (page: 26)

Page 25 of 93
PDF with 367 Questions

Which type of identity store allows for creating single-use access credentials in Cisco ISE?

  1. OpenLDAP
  2. Local
  3. PKI
  4. RSA SecurID

Answer(s): D


Reference:

https://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_man_id_stores.html



While configuring Cisco TrustSec on Cisco IOS devices, the engineer must set the CTS device ID and password in order for the devices to authenticate with each other. However, after this is complete, the devices are not able to properly authenticate.
What issue would cause this to happen even if the device ID and passwords are correct?

  1. EAP-FAST is not enabled.
  2. The SGT mappings have not been defined.
  3. The device aliases are not matching.
  4. The devices are missing the configuration cts credentials trustsec verify 1.

Answer(s): A



A Cisco device has a port configured in multi-authentication mode and is accepting connections only from hosts assigned the SGT of SGT_0123456789. The VLAN trunk link supports a maximum of 8 VLANS.
What is the reason for these restrictions?

  1. The device is performing inline tagging without acting as a SXP speaker.
  2. The device is performing inline tagging while acting as a SXP speaker.
  3. The IP subnet addresses are dynamically mapped to an SGT.
  4. The IP subnet addresses are statically mapped to an SGT.

Answer(s): A



An engineer is deploying Cisco ISE to use 802.1X authentication for controlling access to the company's wired network. The request from company management is to minimize the impact on users during the rollout of 802.1X on the company switches.
Which mode must be used first in a phased 802.1X deployment to fulfill this request?

  1. Monitor
  2. Open
  3. Low-impact
  4. Closed

Answer(s): A






Post your Comments and Discuss Cisco® 300-715 exam with other Community members:

Exam Discussions & Posts