Shop Categories

 [email protected]
Search
View Cart
Checkout

The following 300-715 questions are part of our Cisco 300-715 real exam questions full version. There are 262 in our 300-715 full version. All of our 300-715 real exam questions can guarantee you success in the first attempt. If you fail 300-715 exam with our Cisco 300-715 real exam questions, you will get full payment fee refund. Want to practice and study full verion of 300-715 real exam questions? Go now!

 Get 300-715 Full Version

Cisco 300-715 Exam Actual Questions

The questions for 300-715 were last updated on Feb 21,2025 .

Viewing page 1 out of 4 pages.

Viewing questions 1 out of 20 questions

Question#1

Which two task types are included in the Cisco ISE common tasks support for TACACS+ profiles? (Choose two)

A. Firepower
B. WLC
C. IOS
D. ASA
E. Shell

Explanation:
https://www.cisco.com/c/en/us/td/docs/security/ise/2-1/admin_guide/b_ise_admin_guide_21/b_ise_admin_guide_20_chapter_0100010.html
TACACS+ Profile
TACACS+ profiles control the initial login session of the device administrator. A session refers to each individual authentication, authorization, or accounting request. A session authorization request to a network device elicits an ISE response. The response includes a token that is interpreted by the network device, which limits the commands that may be executed for the duration of a session. The authorization policy for a device administration access service can contain a single shell profile and multiple command sets.
The TACACS+ profile definitions are split into two components:
✑ Common tasks
✑ Custom attributes
There are two views in the TACACS+ Profiles page (Work Centers > Device Administration
> Policy Elements > Results > TACACS Profiles)―Task Attribute View and Raw View. Common tasks can be entered using the Task Attribute View and custom attributes can be created in the Task Attribute View as well as the Raw View.
The Common Tasks section allows you to select and configure the frequently used attributes for a profile. The attributes that are included here are those defined by the TACACS+ protocol draft specifications. However, the values can be used in the authorization of requests from other services. In the Task Attribute View, the ISE administrator can set the privileges that will be assigned to the device administrator.
The common task types are:
✑ Shell
✑ WLC
✑ Nexus
✑ Generic
The Custom Attributes section allows you to configure additional attributes. It provides a list of attributes that are not recognized by the Common Tasks section. Each definition consists of the attribute name, an indication of whether the attribute is mandatory or optional, and the value for the attribute. In the Raw View, you can enter the mandatory attributes using a equal to (=) sign between the attribute name and its value and optional attributes are entered using an asterisk (*) between the attribute name and its value. The attributes entered in the Raw View are reflected in the Custom Attributes section in the Task Attribute View and vice versa. The Raw View is also used to copy paste the attribute list (for example, another product's attribute list) from the clipboard onto ISE. Custom attributes can be defined for nonshell services.

Question#2

An engineer is configuring a guest password policy and needs to ensure that the password complexity requirements are set to mitigate brute force attacks .
Which two requirement complete this policy? (Choose two)

A. minimum password length
B. active username limit
C. access code control
D. gpassword expiration period
E. username expiration date

Question#3

DRAG DROP
Drag the steps to configure a Cisco ISE node as a primary administration node from the left into the correct order on the night.


A. 

Explanation:
https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/admin_guide/b_ise_admin_guide_24/b_ise_admin_guide_24_new_chapter_011.html
Step 1
Choose Administration > System > Deployment.
The Register button will be disabled initially. To enable this button, you must configure a Primary PAN.
Step 2
Check the check box next to the current node, and click Edit.
Step 3
Click Make Primary to configure your Primary PAN.
Step 4
Enter data on the General Settings tab.
Step 5
Click Save to save the node configuration.

Question#4

A network administrator is currently using Cisco ISE to authenticate devices and users via 802 1X There is now a need to also authorize devices and users using EAP-TLS .
Which two additional components must be configured in Cisco ISE to accomplish this'? (Choose two.)

A. Network Device Group
B. Serial Number attribute that maps to a CA Server
C. Common Name attribute that maps to an identity store
D. Certificate Authentication Profile
E. EAP Authorization Profile

Question#5

An organization is hosting a conference and must make guest accounts for several of the speakers attending. The conference ended two days early but the guest accounts are still being used to access the network .
What must be configured to correct this?

A. Create an authorization rule denying sponsored guest access.
B. Navigate to the Guest Portal and delete the guest accounts.
C. Create an authorization rule denying guest access.
D. Navigate to the Sponsor Portal and suspend the guest accounts.

Exam Code: 300-715Q & A: 262 Q&AsUpdated:  Feb 21,2025

 Get 300-715 Full Version
 About 300-715 Questions

TOP Exams