An engineer is configuring 802.1X and wants it to be transparent from the users’ point of view. The implementation should provide open authentication on the switch ports while providing strong levels of security for non-authenticated devices.Which deployment mode should be used to achieve this?
Answer(s): C
https://community.cisco.com/t5/security-documents/ise-secure-wired-access-prescriptive- deployment-guide/ta-p/3641515
A network administrator changed a Cisco ISE deployment from pilot to production and noticed that the JVM memory utilization increased significantly. The administrator suspects this is due to replication between the nodes.What must be configured to minimize performance degradation?
Answer(s): A
https://www.cisco.com/c/en/us/td/docs/security/ise/2-3/admin_guide/b_ise_admin_guide_23/ b_ise_admin_guide_23_chapter_010111.html
An administrator is attempting to replace the built-in self-signed certificates on a Cisco ISE appliance. The CA is requesting some information about the appliance in order to sign the new certificate.What must be done in order to provide the CA this information?
Answer(s): B
An administrator is adding network devices for a new medical building into Cisco ISE. These devices must be in a network device group that is identifying them as “Medical Switch” so that the policies can be made separately for the endpoints connecting through them.Which configuration item must be changed in the network device within Cisco ISE to accomplish this goal?
An organization wants to split their Cisco ISE deployment to separate the device administration functionalities from the main deployment. For this to work, the administrator must deregister any nodes that will become a part of the new deployment, but the button for this option is grayed out.Which configuration is causing this behavior?
Answer(s): D
https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/admin_guide/Workflow/PDF/b_ISE_admin_24_pdf.pdf
Post your Comments and Discuss Cisco 300-715 exam dumps with other Community members: