Updated Oct 27, 2023 Test Engine to Practice Test for 300-715 Valid and Updated Dumps [Q119-Q138]

Q119. What is a characteristic of the UDP protocol?

Q120. Refer to the exhibit:

Which command is typed within the CU of a switch to view the troubleshooting output?

Q121. When setting up profiling in an environment using Cisco ISE for network access control, an organization must use non-proprietary protocols for collecting the information at layer 2. Which two probes will provide this information without forwarding SPAN packets to Cisco ISE? {Choose two.)

Q122. An organization is implementing Cisco ISE posture services and must ensure that a host-based firewall is in place on every Windows and Mac computer that attempts to access the network They have multiple vendors’ firewall applications for their devices, so the engineers creating the policies are unable to use a specific application check in order to validate the posture for this What should be done to enable this type of posture check?

Q123. An engineer is configuring Cisco ISE policies to support MAB for devices that do not have 802.1X capabilities. The engineer is configuring new endpoint identity groups as conditions to be used in the AuthZ policies, but noticed that the endpoints are not hitting the correct policies. What must be done in order to get the devices into the right policies?

Q124. Refer to the exhibit.

Which component must be configured to apply the SGACL?

Q125.

Refer to the exhibit. In which scenario does this switch configuration apply?

Q126. An engineer is configuring a guest password policy and needs to ensure that the password complexity requirements are set to mitigate brute force attacks. Which two requirement complete this policy? (Choose two)

Q127. An engineer is configuring 802.1X and wants it to be transparent from the users’ point of view. The implementation should provide open authentication on the switch ports while providing strong levels of security for non-authenticated devices. Which deployment mode should be used to achieve this?

Q128. If a user reports a device lost or stolen, which portal should be used to prevent the device from accessing the network while still providing information about why the device is blocked?

Q129. Which two default endpoint identity groups does Cisco ISE create? (Choose two )

Q130. Drag the steps to configure a Cisco ISE node as a primary administration node from the left into the correct order on the night.

Q131. An engineer is implementing network access control using Cisco ISE and needs to separate the traffic based on the network device ID and use the IOS device sensor capability. Which probe must be used to accomplish this task?

Q132. A company manager is hosting a conference. Conference participants must connect to an open guest SSID and only use a preassigned code that they enter into the guest portal prior to gaining access to the network. How should the manager configure Cisco ISE to accomplish this goal?

Q133. A user is attempting to register a BYOD device to the Cisco ISE deployment, but needs to use the onboarding policy to request a digital certificate and provision the endpoint. What must be configured to accomplish this task?

Q134. Which two endpoint compliance statuses are possible? (Choose two.)

Q135. Which portal is used to customize the settings for a user to log in and download the compliance module?

Q136. In which two ways can users and endpoints be classified for TrustSec?
(Choose Two.)

Q137. Refer to the exhibit Which switch configuration change will allow only one voice and one data endpoint on each port?

Q138. Refer to the exhibit:

Which command is typed within the CU of a switch to view the troubleshooting output?