Free 300-715 Exam Braindumps (page: 30)

Page 30 of 81

An employee logs on to the My Devices portal and marks a currently on-boarded device as `Lost`.
Which two actions occur within Cisco ISE as a result of this action? (Choose two.)

  1. BYOD Registration status is updated to No.
  2. BYOD Registration status is updated to Unknown.
  3. The device access has been denied.
  4. Certificates provisioned to the device are not revoked.
  5. The device status is updated to Stolen.

Answer(s): C,D


Reference:

https://www.cisco.com/c/en/us/td/docs/security/ise/1-3/admin_guide/b_ise_admin_guide_13/b_ise_admin_guide_sample_chapter_010000.html



A network administrator is configuring a secondary Cisco ISE node from the backup configuration of the primary Cisco ISE node to create a high availability pair.
The Cisco ISE CA certificates and keys must be manually backed up from the primary Cisco ISE and copied into the secondary Cisco ISE.
Which command must be issued for this to work?

  1. copy certificate ise
  2. certificate configure ise
  3. import certificate ise
  4. application configure ise

Answer(s): D


Reference:

https://www.cisco.com/c/en/us/td/docs/security/ise/2-1/admin_guide/b_ise_admin_guide_21/ b_ise_admin_guide_20_chapter_0111.html#concept_435C4E3FF56949B1B4D5A0C73671AB22



A network engineer has been tasked with enabling a switch to support standard web authentication for Cisco ISE. This must include the ability to provision for URL redirection on authentication.
Which two commands must be entered to meet this requirement? (Choose two.)

  1. ip http secure-server
  2. ip http authentication
  3. ip http server
  4. ip http redirection
  5. ip http secure-authentication

Answer(s): A,C


Reference:

https://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_sw_cnfg.pdf



A network administrator notices that after a company-wide shut down, many users cannot connect their laptops to the corporate SSID.
What must be done to permit access in a timely manner?

  1. Connect this system as a guest user and then redirect the web auth protocol to log in to the network.
  2. Allow authentication for expired certificates within the EAP-TLS section under the allowed protocols.
  3. Add a certificate issue from the CA server, revoke the expired certificate, and add the new certificate in system.
  4. Authenticate the user's system to the secondary Cisco ISE node and move this user to the primary with the renewed certificate.

Answer(s): B



Page 30 of 81



Post your Comments and Discuss Cisco® 300-715 exam with other Community members:

Qorban commented on April 11, 2021
I paid in Derham and the process of payment and download was so fast and easy. The Test Engine called Xengine App came for free. I am stdying from that engine. For now I am not ready yet. But ones I go do my test I come back and write my score here so others can a more informed decision.
UNITED ARAB EMIRATES
upvote