Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. Cisco
  5. 300-715

Cisco 300-715 Exam Questions
Implementing and Configuring Cisco Identity Services Engine (300-715 SISE) (Page 5 )

Updated On: 21-Feb-2026
Page 5 of 75
PDF with 384 Questions

An engineer is configuring 802.1X and wants it to be transparent from the users’ point of view. The implementation should provide open authentication on the switch ports while providing strong levels of security for non-authenticated devices.
Which deployment mode should be used to achieve this?

  1. closed
  2. high-impact
  3. low-impact
  4. open

Answer(s): C


Reference:

https://community.cisco.com/t5/security-documents/ise-secure-wired-access-prescriptive- deployment-guide/ta-p/3641515



A network administrator changed a Cisco ISE deployment from pilot to production and noticed that the JVM memory utilization increased significantly. The administrator suspects this is due to replication between the nodes.
What must be configured to minimize performance degradation?

  1. Enable the endpoint attribute filter.
  2. Review the profiling policies for any misconfiguration.
  3. Ensure that Cisco ISE is updated with the latest profiler feed update.
  4. Change the reauthentication interval.

Answer(s): A


Reference:

https://www.cisco.com/c/en/us/td/docs/security/ise/2-3/admin_guide/b_ise_admin_guide_23/ b_ise_admin_guide_23_chapter_010111.html



An administrator is attempting to replace the built-in self-signed certificates on a Cisco ISE appliance. The CA is requesting some information about the appliance in order to sign the new certificate.
What must be done in order to provide the CA this information?

  1. Install the Root CA and intermediate C
  2. Generate the CSR.
  3. Download the CA server certificate.
  4. Download the intermediate server certificate.

Answer(s): B



An administrator is adding network devices for a new medical building into Cisco ISE. These devices must be in a network device group that is identifying them as “Medical Switch” so that the policies can be made separately for the endpoints connecting through them.
Which configuration item must be changed in the network device within Cisco ISE to accomplish this goal?

  1. Change the device profile to Medical Switch.
  2. Change the device type to Medical Switch.
  3. Change the device location to Medical Switch.
  4. Change the model name to Medical Switch.

Answer(s): B



An organization wants to split their Cisco ISE deployment to separate the device administration functionalities from the main deployment. For this to work, the administrator must deregister any nodes that will become a part of the new deployment, but the button for this option is grayed out.
Which configuration is causing this behavior?

  1. All of the nodes are actively being synched.
  2. All of the nodes participate in the PAN auto failover.
  3. One of the nodes is an active PSN.
  4. One of the nodes is the Primary PAN.

Answer(s): D


Reference:

https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/admin_guide/Workflow/PDF/
b_ISE_admin_24_pdf.pdf






Post your Comments and Discuss Cisco 300-715 exam dumps with other Community members:

Join the 300-715 Discussion