Cisco Exam 300-715 Topic 11 Question 65 Discussion

Actual exam question for Cisco's 300-715 exam

Question #: 65
Topic #: 11

An engineer is configuring Cisco ISE policies to support MAB for devices that do not have 802.1X capabilities. The engineer is configuring new endpoint identity groups as conditions to be used in the AuthZ policies, but noticed that the endpoints are not hitting the correct policies. What must be done in order to get the devices into the right policies?

AManually add the MAC addresses of the devices to endpoint ID groups in the context visibility database.

BCreate an AuthZ policy to identify Unknown devices and provide partial network access prior to profiling.

CAdd an identity policy to dynamically add the IP address of the devices to their endpoint identity groups.

DIdentify the non 802.1X supported device types and create custom profiles for them to profile into.

Show Suggested Answer

Suggested Answer: D, E

by Johnna at Feb 03, 2023, 07:48 PM

Limited Time Offer

25%

Off

Get Premium 300-715 Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Horace

5 days ago

I'm just gonna go with D and hope I don't get any of those 'non-802.1X' devices in my network. That's like trying to configure a VCR these days.

upvoted 0 times

...

Gladis

12 days ago

Dynamically adding IP addresses to endpoint groups? That's straight out of the 90s, man. This is Cisco ISE, we're all about that MAB now!

upvoted 0 times

...

Vi

15 days ago

Wait, what? Unknown devices get partial network access? That sounds like a security nightmare! I'm gonna go with option D, it's the safest bet.

upvoted 0 times

...

29 days ago

I think the answer is A) Manually add the MAC addresses of the devices to endpoint ID groups.

upvoted 0 times

...