Which port does Cisco ISE use for native supplicant provisioning of a Windows machine?
Answer : C
Explanation:
8909 : web, cisco nac agent, supplicant provisioning wizard installation
8905 : Cisco NAC agent update
A user is on a wired connection and the posture status is noncompliant.
Which state will their EPS session be placed in?
Answer : D
What is a required step when you deploy dynamic VLAN and ACL assignments?
Answer : C
Which setting provides the best security for a WLAN and authenticates users against a centralized directory store?
Answer : A
Which two components are required to connect to a WLAN network that is secured by
EAP-TLS authentication? (Choose two.)
Answer : B,D
Which CoA type does a Cisco ISE PSN send to a network access device when a NAG agent reports the OS patch status of a noncompliant endpoint?
Answer : C
Explanation: If an endpoint is marked noncompliant during that download, a CoA is sent and the device is forced to reauthenticate, providing a different result (such as quarantine).
Which two options must be used on Cisco ISE to enable the TACACS+ feature? (Choose two.)
Answer : D,G
In Cisco ISE 1.3 and above, which two operations are allowed on Endpoint Certificates pages for issued endpoint certificates on the admin portal? (Choose two.)
Answer : C,E
Which three features should be enabled as best practices for MAB? (Choose three.)
Answer : B,C,E
What is the effect of the ip http secure-server command on a Cisco ISE?
Answer : C
What is the default posture status for non-agent capable devices, such as Linux and iDevices?
Answer : D
What is the first step that occurs when provisioning a wired device in a BYOD scenario?
Answer : A
Which configuration must you perform on a switch to deploy Cisco ISE in low-impact mode?
Answer : A
What three changes require restarting the application service on an ISE node? (Choose three.)
Answer : A,B,C