Available Number of Questions: Maximum of
306 Questions
Exam Name: Implementing and Configuring Cisco Identity Services Engine
Exam Duration: 90 Minutes
Related Certification(s):
Cisco CCNP, Cisco CCNP Security Certifications
Cisco 300-715 Exam Topics - You’ll Be Tested in Actual Exam
What catches people off guard is how quickly this exam shifts from drawing the ISE deployment to proving you can make it behave under messy real access requests. You need to be fluent in the architecture and deployment decisions that drive everything else, like node roles, personas, certificate planning, and how your design affects policy evaluation and failure handling. Then the real weight lands on policy enforcement, where you read an authentication flow like a story and decide what ISE should do next with identity sources, authorization rules, and downloadable controls, not just what the rule names look like. Web authentication and guest services show up as the human side of that same engine, where portal behavior, sponsor workflows, and redirect logic need to line up with policies or users get stuck in loops. Profiling and BYOD sit in the middle, because the exam expects you to connect endpoint visibility and onboarding to the rules that grant access, quarantine, or steer devices into the right experience. Endpoint compliance is the reality check, since posture results only matter when you can tie them cleanly to authorization outcomes and remediation paths. Network access device administration is smaller, but it is the glue, because you must know how device management access is controlled and audited inside ISE. If you can trace one endpoint from first packet to final authorization, you are studying in the right direction.
Cisco 300-715 Exam Short Quiz
Attempt this Cisco 300-715 exam quiz to self-assess your preparation for the actual Cisco Implementing and Configuring Cisco Identity Services Engine exam. CertBoosters also provides premium Cisco 300-715 exam questions to pass the Cisco Implementing and Configuring Cisco Identity Services Engine exam in the shortest possible time. Be sure to try our free practice exam software for the Cisco 300-715 exam.
1of 0 questions |
Cisco 300-715 Exam Quiz
✓ 0 answered
🔖 0 bookmarked
Cisco300-715
Q1:
An enterprise uses a separate PSN for each of its four remote sites. Recently, a user reported receiving an "EAP-TLS authentication failed" message when moving between remote sites. Which configuration must be applied on Cisco ISE?
○
AUse a third-party certificate on the network device.
○
BAdd the device to all PSN nodes in the deployment.
○
CRenew the expired certificate on one of the PSN.
○
DConfigure an authorization profile for the end users.
Cisco300-715
Q2:
An ISE administrator must change the inactivity timer for MAB endpoints to terminate the authentication session whenever a switch port that is connected to an IP phone does not detect packets from the device for 30 minutes. Which action must be taken to accomplish this task?
○
AAdd the authentication timer reauthenticate server command to the switchport.
○
BAdd the authentication timer inactivity 3600 command to the switchport.
○
CChange the idle-timeout on the Radius server to 3600 seconds for IP Phone endpoints.
○
DConfigure the session-timeout to be 3600 seconds on Cisco ISE.
Cisco300-715
Q3:
A network engineer needs to deploy 802.1x using Cisco ISE in a wired network environment where thin clients download their system image upon bootup using PXE. For which mode must the switch ports be configured?
○
Aclosed
○
Brestricted
○
Cmonitor
○
Dlow-impact
Cisco300-715
Q4:
Which type of identity store allows for creating single-use access credentials in Cisco ISE?
○
AOpenLDAP
○
BLocal
○
CPKI
○
DRSA SecurID
Cisco300-715
Q5:
A user changes the status of a device to stolen in the My Devices Portal of Cisco ISE. The device was originally onboarded in the BYOD wireless Portal without a certificate. The device is found later, but the user cannot re-onboard the device because Cisco ISE assigned the device to the Blocklist endpoint identity group. What must the user do in the My Devices Portal to resolve this issue?
○
AManually remove the device from the Blocklist endpoint identity group.
○
BChange the device state from Stolen to Not Registered.
○
CChange the BYOD registration attribute of the device to None.
