Dump questions and answers of ccnp Security SISAS 300-208 for easy pass online| Page 14 -- Infibee

Feedback

Home

General Knowledge
General Aptitude
General English
Networking
Interview Questions
- .NET
- Java
- ASP.NET
- C++
- Perl
- Python
- Ruby and Rails
- Struts
- Core Java
- Hibernate
- DB2
- MS SQL Server
- MySQL
- Oracle
- SQL
- DBMS
- Data Warehousing
- Data structures and Algorithms
- CCNA
- CCNP Routing
- CCNP Switching
- Internetworking
- Border Gateway Protocol
- MCSE
- Exchange Server
- Windows Server 2008
- DNS & Active Directory
- Firewall Questions
- Unix
- Linux Server Administrator
- Linux System Administrator
- Linux File Manipulation
Database

Home
Networking
CCNP Security 300-208

66.

True or False? The profiling service is enabled by default on ISE policy service nodes.

A.
True
B.
False

Answer & Explanation
Report

Answer : [A]
Explanation :

Profiler is enabled by default on all policy service nodes and standalone nodes. However, not a single probe is enabled by default in ISE 1.2.

Report

Name

67.

Name three ways in which an endpoint profile can be used in an authorization policy rule?

A.
Logical profiles
B.
Endpoint identity groups
C.
D.
EndPointPolicy attribute
E.
EndPointProfile attribute

Answer & Explanation
Report

Answer : [A, B, D]
Explanation :

There is no such thing as an EndPointProfile attribute. Although OS-Scan is used as a condition to determine the endpoint’s profile, it cannot be used directly in an authorization policy. The authorization policy can use identity groups (which contain a list of MAC addresses), EndPoint Policy attribute (which is the actual endpoint profile), and logical profiles (a group of profiles).

Report

Name

68.

Which probe is used to trigger the SNMPQUERY probe to query a NAD?

A.
RADIUS
B.
SNMPQUERY
C.
HTTP
D.
SNMPTRAP
E.
Both A and D
F.
Both C and D

Answer & Explanation
Report

Answer : [E]
Explanation :

The SNMPQUERY probe will periodically query all the NADs configured with SNMP strings, but it is also a reactive probe. The SNMPQUERY probe will reactively query a NAD when the RADIUS probe receives an accounting START message or when an SNMP trap is received.

Report

Name

69.

Which three probes exist with device sensor?

A.
CDP, DHCP, RADIUS
B.
HTTP, CDP, RADIUS
C.
CDP, DHCP, LLDP
D.
CDP, HTTP, SNMP

Answer & Explanation
Report

Answer : [C]
Explanation :

The three probes that exist in device sensor on Cisco switches are CDP, DHCP, and LLDP. Wireless controllers have two probes: DHCP and HTTP.

Report

Name

70.

How are updated profiles distributed to customer ISE deployments?

A.
Cisco’s Profiler Feed Service.
B.
Each new version of ISE or ISE patch includes new profile policies.
C.
The profiles are distributed together with the posture checks and compliance modules.
D.
Import the update packs that are downloaded from Cisco.com.

Answer & Explanation
Report

Answer : [A]
Explanation :

Cisco no longer includes profile updates within the ISE version updates or patches. All new profiles are included and downloaded as part of the Cisco Profiler Feed Service.

Report

Name

Pages
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20

Sitemap