Cisco 300-208 - Implementing Cisco Secure Access Solutions Exam
Page: 1 / 54
Total 269 questions
Question #1 (Topic: )
Which effect does the ip http secure-server command have on a Cisco ISE?
A. It enables the HTTP server for users to connect on the command line.
B. It enables the HTTP server for users to connect by using web-based authentication.
C. It enables the HTTPS server for users to connect by using web-based authentication.
D. It enables the HTTPS server for users to connect on the command line.
Answer: C
Question #2 (Topic: )
When RADIUS NAC and AAA Override are enabled for WLC on a Cisco ISE, which two
statements about RADIUS NAC are true? (Choose two.)
statements about RADIUS NAC are true? (Choose two.)
A. It will return an access-accept and send the redirection URL for all users.
B. It establishes secure connectivity between the RADIUS server and the ISE.
C. It allows the ISE to send a CoA request that indicates when the user is authenticated.
D. It is used for posture assessment, so the ISE changes the user profile based on posture result.
E. It allows multiple users to authenticate at the same time.
Answer: C,D
Question #3 (Topic: )
Wireless client supplicants attempting to authenticate to a wireless network are generating
excessive log messages. Which three WLC authentication settings should be disabled?
(Choose three.)
excessive log messages. Which three WLC authentication settings should be disabled?
(Choose three.)
A. RADIUS Server Timeout
B. RADIUS Aggressive-Failover
C. Idle Timer
D. Session Timeout
E. Client Exclusion
F. Roaming
Answer: B,C,D
Question #4 (Topic: )
Which three statements about the Cisco wireless IPS solution are true? (Choose three.)
A. It enables stations to remain in power-save mode, except at specified intervals to receive data from the access point.
B. It detects spoofed MAC addresses.
C. It identifies potential RF jamming attacks.
D. It protects against frame and device spoofing.
E. It allows the WLC to failover because of congestion.
Answer: B,C,D
Question #5 (Topic: )
In Cisco ISE, which probe must be enabled to collect profiling data using Device Sensor?
A. RADIUS
B. SNMPQuery
C. SNMPTrap
D. Network Scan
E. Syslog
Answer: A
