CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Cisco®
  5. 300-715

Free 300-715 Exam Braindumps (page: 43)

Page 43 of 81
PDF with 320 Questions

Refer to the exhibit. An administrator is manually adding a device to a Cisco ISE identity group to ensure that it is able to access the network when needed without authentication. Upon testing, the administrator notices that the device never hits the correct authorization policy line using the condition EndPoints-LogicalProfile
EQUALS static_list.
Why is this occurring?

  1. The dynamic logical profile is overriding the statically assigned profile.
  2. The logical profile is being statically assigned instead of the identity group.
  3. The identity group is being assigned instead of the logical profile.
  4. The device is changing identity groups after profiling instead of remaining static.

Answer(s): B



An administrator is configuring sponsored guest access using Cisco ISE. Access must be restricted to the sponsor portal to ensure that only necessary employees can issue sponsored accounts, and employees must be classified to do so.
What must be done to accomplish this task?

  1. Modify the sponsor groups assigned to reflect the desired user groups.
  2. Configure an identity-based access list in Cisco ISE to restrict the users allowed to login.
  3. Edit the sponsor portal to only accept members from the selected groups.
  4. Create an authorization rule using the Guest Flow condition to authorize the administrators.

Answer(s): A



During a 802.1X deployment, an engineer must identify failed authentications without causing problems for the connected endpoint.
Which command will successfully achieve this?

  1. authentication open
  2. dot1x pae authenticator
  3. authentication port-control auto
  4. dot1x system-auth-control

Answer(s): A



An engineer is configuring TACACS+ within Cisco ISE for use with a non-Cisco network device. They need to send special attributes in the Access-Accept response to ensure that the users are given the appropriate access.
What must be configured to accomplish this?

  1. custom access conditions for defining the different roles
  2. shell profiles with custom attributes that define the various roles
  3. dACLs to enforce the various access policies for the users
  4. TACACS+ command sets to provide appropriate access

Answer(s): B



Page 43 of 81



Post your Comments and Discuss Cisco® 300-715 exam with other Community members:

Qorban commented on April 11, 2021
I paid in Derham and the process of payment and download was so fast and easy. The Test Engine called Xengine App came for free. I am stdying from that engine. For now I am not ready yet. But ones I go do my test I come back and write my score here so others can a more informed decision.
UNITED ARAB EMIRATES
upvote