Summer Special 60% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: bestdeal

Free Cisco 300-715 Practice Exam with Questions & Answers | Set: 2

Questions 11

An administrator is configuring the Native Supplicant Profile to be used with the Cisco ISE posture agents and needs to test the connection using wired devices to determine which profile settings are available. Which two configuration settings should be used to accomplish this task? (Choose two.)

Options:
A.

authentication mode

B.

proxy host/IP

C.

certificate template

D.

security

E.

allowed protocol

Cisco 300-715 Premium Access
Questions 12

Which default endpoint identity group does an endpoint that does not match any profile in Cisco ISE become a member of?

Options:
A.

Endpoint

B.

unknown

C.

blacklist

D.

white list

E.

profiled

Questions 13

Which two probes must be enabled for the ARP cache to function in the Cisco ISE profile service so that a user can reliably bind the IP address and MAC addresses of endpoints? (Choose two.)

Options:
A.

NetFlow

B.

SNMP

C.

HTTP

D.

DHCP

E.

RADIUS

Questions 14

How is policy services node redundancy achieved in a deployment?

Options:
A.

by enabling VIP

B.

by utilizing RADIUS server list on the NAD

C.

by creating a node group

D.

by deploying both primary and secondary node

Questions 15

An engineer is creating a new authorization policy to give the endpoints access to VLAN 310 upon successful authentication The administrator tests the 802.1X authentication for the endpoint and sees that it is authenticating successfully What must be done to ensure that the endpoint is placed into the correct VLAN?

Options:
A.

Configure the switchport access vlan 310 command on the switch port

B.

Ensure that the security group is not preventing the endpoint from being in VLAN 310

C.

Add VLAN 310 in the common tasks of the authorization profile

D.

Ensure that the endpoint is using The correct policy set

Questions 16

What is a valid status of an endpoint attribute during the device registration process?

Options:
A.

block listed

B.

pending

C.

unknown

D.

DenyAccess

Questions 17

An administrator is attempting to replace the built-in self-signed certificates on a Cisco ISE appliance. The CA is requesting some information about the appliance in order to sign the new certificate. What must be done in order to provide the CA this information?

Options:
A.

Install the Root CA and intermediate CA.

B.

Generate the CSR.

C.

Download the intermediate server certificate.

D.

Download the CA server certificate.

Questions 18

An organization is hosting a conference and must make guest accounts for several of the speakers attending. The conference ended two days early but the guest accounts are still being used to access the network. What must be configured to correct this?

Options:
A.

Create an authorization rule denying sponsored guest access.

B.

Navigate to the Guest Portal and delete the guest accounts.

C.

Create an authorization rule denying guest access.

D.

Navigate to the Sponsor Portal and suspend the guest accounts.

Questions 19

An organization has a fully distributed Cisco ISE deployment When implementing probes, an administrator must scan for unknown endpoints to learn the IP-to-MAC address bindings. The scan is complete on one FPSN. but the information is not available on the others. What must be done to make the information available?

Options:
A.

Scanning must be initiated from the PSN that last authenticated the endpoint

B.

Cisco ISE must learn the IP-MAC binding of unknown endpoints via DHCP profiling, not via scanning

C.

Scanning must be initiated from the MnT node to centrally gather the information

D.

Cisco ISE must be configured to learn the IP-MAC binding of unknown endpoints via RADIUS authentication, not via scanning

Questions 20

A customer wants to set up the Sponsor portal and delegate the authentication flow to a third party for added security while using Kerberos Which database should be used to accomplish this goal?

Options:
A.

RSA Token Server

B.

Active Directory

C.

Local Database

D.

LDAP

Exam Code: 300-715
Certification Provider: Cisco
Exam Name: Implementing and Configuring Cisco Identity Services Engine (SISE) v4.0 (300-715 SISE)
Last Update: Jul 17, 2025
Questions: 243

Cisco Related Exams

How to pass Cisco 300-710 - Securing Networks with Cisco Firepower (300-710 SNCF) Exam
How to pass Cisco 300-720 - Securing Email with Cisco Email Security Appliance (300-720 SESA) Exam
How to pass Cisco 300-725 - Securing the Web with Cisco Web Security Appliance (300-725 SWSA) Exam
How to pass Cisco 300-730 - Implementing Secure Solutions with Virtual Private Networks (SVPN) Exam
How to pass Cisco 300-735 - Automating and Programming Cisco Security Solutions (300-735 SAUTO) Exam
How to pass Cisco 350-701 - Implementing and Operating Cisco Security Core Technologies (SCOR 350-701) Exam
600-660 - Implementing Cisco Application Centric Infrastructure - Advanced (600-660 DCACIA)
700-905 - Cisco HyperFlex for Systems Engineers
300-835 - Automating Cisco Collaboration Solutions (CLAUTO)
700-703 - Cisco Application Centric Infrastructure for Field Engineers Exam
500-425 - Cisco AppDynamics Associate Administrator (CAAA)
500-460 - Enterprise Mobility Essentials for Sales Engineers
648-385 - Cisco Express Foundation for Field Engineers
350-501 - Implementing and Operating Cisco Service Provider Network Core Technologies (350-501 SPCOR)
Cisco Free Access
Get Cisco Full Access

Cisco Free Exams
Cisco Free Exams
Examstrack offers free Cisco exam materials and practice tests to aid your Cisco certification journey.