300-715 Exam Details

  • Exam Code
    :300-715
  • Exam Name
    :Implementing and Configuring Cisco Identity Services Engine (SISE)
  • Certification
    :CCNP Security
  • Vendor
    :Cisco
  • Total Questions
    :448 Q&As
  • Last Updated
    :Jul 13, 2026

Cisco 300-715 Online Questions & Answers

  • Question 1:

    DRAG DROP

    Drag and drop the configuration steps from the left into the sequence on the right to install two Cisco ISE nodes in a distributed deployment.

    Select and Place:

  • Question 2:

    Users in an organization report issues about having to remember multiple usernames and passwords. The network administrator wants the existing Cisco ISE deployment to utilize an external identity source to alleviate this issue.

    Which two requirements must be met to implement this change? (Choose two.)

    A. Enable IPC access over port 80.
    B. Ensure that the NAT address is properly configured
    C. Establish access to one Global Catalog server.
    D. Provide domain administrator access to Active Directory.
    E. Configure a secure LDAP connection.

  • Question 3:

    Which are two characteristics of TACACS+? (Choose two ) ,

    A. It uses TCP port 49.
    B. It combines authorization and authentication functions.
    C. It separates authorization and authentication functions.
    D. It encrypts the password only.
    E. It uses UDP port 49.

  • Question 4:

    An administrator must authenticate Cisco Secure Client users using a secure token against an LDAP server to grant wireless network access in a Cisco ISE deployment. These configurations have been performed:

    1. configured Microsoft Active Directory as an external identity source

    2. created an authentication policy

    3. created an authorization policy.

    The administrator must create a Secure Client profile to complete the configuration.

    Which protocol must be implemented on the policy by the administrator?

    A. LEAP
    B. EAP-MD5
    C. EAP-GTC
    D. MS-CHAPv2

  • Question 5:

    An engineer is configuring web authentication using non-standard ports and needs the switch to redirect traffic to the correct port. Which command should be used to accomplish this task?

    A. permit tcp any any eq
    B. aaa group server radius proxy
    C. IP http port
    D. aaa group server radius

  • Question 6:

    What must be configured on the Cisco ISE authentication policy for unknown MAC addresses/identities for successful authentication?

    A. pass
    B. reject
    C. drop
    D. continue

  • Question 7:

    A network engineer must enforce access control using special tags without re- engineering the network design, which feature should be configured to achieve this in a scalable manner?

    A. RBAC
    B. VLAN
    C. SGT
    D. dACL

  • Question 8:

    An administrator needs to give the same level of access to the network devices when users are logging into them using TACACS+ However, the administrator must restrict certain commands based on one of three user roles that require different commands

    How is this accomplished without creating too many objects using Cisco ISE?

    A. Create one shell profile and multiple command sets.
    B. Create multiple shell profiles and multiple command sets.
    C. Create one shell profile and one command set.
    D. Create multiple shell profiles and one command set

  • Question 9:

    What is used by the CA to issue a certificate to an endpoint?

    A. device network address
    B. device unique identifier
    C. certificate template
    D. certificate provisioning portal

  • Question 10:

    What are two differences of TACACS+ compared to RADIUS? (Choose two.)

    A. TACACS+ uses a connectionless transport protocol, whereas RADIUS uses a connection-oriented transport protocol.
    B. TACACS+ encrypts the full packet payload, whereas RADIUS only encrypts the password.
    C. TACACS+ only encrypts the password, whereas RADIUS encrypts the full packet payload.
    D. TACACS+ uses a connection-oriented transport protocol, whereas RADIUS uses a connectionless transport protocol.
    E. TACACS+ supports multiple sessions per user, whereas RADIUS supports one session per user.

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 300-715 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.