1. Home
  2. Cisco
  3. 300-715

Cisco 300-715 Online Practice Questions and Exam Preparation

300-715 Exam Details

  • Exam Code
    :300-715
  • Exam Name
    :Implementing and Configuring Cisco Identity Services Engine (SISE)
  • Certification
    :CCNP Security
  • Vendor
    :Cisco
  • Total Questions
    :448 Q&As
  • Last Updated
    :May 25, 2026

Cisco 300-715 Online Questions & Answers

  • Question 81:

    An engineer is configuring Cisco ISE policies to support MAB for devices that do not have 802.1X capabilities. The engineer is configuring new endpoint identity groups as conditions to be used in the AuthZ policies, but noticed that the endpoints are not hitting the correct policies.

    What must be done in order to get the devices into the right policies?

    A. Manually add the MAC addresses of the devices to endpoint ID groups in the context visibility database.
    B. Create an AuthZ policy to identify Unknown devices and provide partial network access prior to profiling.
    C. Add an identity policy to dynamically add the IP address of the devices to their endpoint identity groups.
    D. Identify the non 802.1x supported device types and create custom profiles for them to profile into.

  • Question 82:

    What are two requirements of generating a single signing in Cisco ISE by using a certificate provisioning portal, without generating a certificate request? (Choose two )

    A. Location the CSV file for the device MAC
    B. Select the certificate template
    C. Choose the hashing method
    D. Enter the common name
    E. Enter the IP address of the device

  • Question 83:

    An organization is adding new profiling probes to the system to improve profiling on Oseo ISE The probes must support a common network management protocol to receive information about the endpoints and the ports to which they are connected

    What must be configured on the network device to accomplish this goal?

    A. ARP
    B. SNMP
    C. WCCP
    D. ICMP

  • Question 84:

    An administrator must provide administrative access to the helpdesk users on production Cisco IOS routers. The solution must meet these requirements:

    1.

    Authenticate the users against Microsoft AD.

    2.

    Validate IOS commands run by users.

    These configurations have been performed:

    1.

    joined Cisco ISE to AD

    2.

    retrieved AD groups

    3.

    added a router to Cisco ISE

    4.

    enabled Device Admin Service in Cisco ISE

    5.

    configured an authorization policy

    6.

    configured the routers for authentication and authorization

    Which two components must be configured? (Choose two.)

    A. TACACS command sets
    B. authentication profile
    C. authorization profile
    D. TACACS profile
    E. access control list to filter the IOS commands

  • Question 85:

    DRAG DROP

    An engineer needs to configure a compliance policy on Cisco ISE to ensure that the latest encryption software is running on the C drive of all endpoints. Drag and drop the configuration steps from the left into the sequence on the right to accomplish this task.

    Select and Place:

  • Question 86:

    Cisco ISE antivirus remediation policy options?

    A. Upload a file
    B. Antivirus
    C. Uniform resource locator

  • Question 87:

    An engineer is configuring a new Cisco ISE node. The Device Admin service must run on this node to handle authentication requests for network device access via TACACS+. Which persona must be enabled on this node to perform this function?

    A. pxGrid
    B. Administration
    C. Policy Service
    D. Monitoring

  • Question 88:

    A network administrator is configuring a new access switch to use with Cisco ISE for network access control. There is a need to use a centralized server for the reauthentication timers. What must be configured in order to accomplish this task?

    A. Issue the authentication timer reauthenticate server command on the switch.
    B. Configure Cisco ISE to block access after a certain period of time.
    C. Configure Cisco ISE to replace the switch configuration with new timers.
    D. Issue the authentication periodic command on the switch.

  • Question 89:

    An engineer must provide network access using a Cisco ISE policy that matches the identity group of endpoints unrecognized by any Cisco ISE profilers and manually adds the endpoints to a new identity group named legacy devices. These configurations were performed on the new endpoint page:

    1.

    configured profiling policy

    2.

    configured the legacy devices identity group

    What must be configured next to complete the configuration?

    A. endpoint operating system
    B. endpoint device name
    C. endpoint description
    D. endpoint MAC address

  • Question 90:

    An engineer must change the message that appears when a device is added to blocklist in Cisco ISE. The new message needs to contain static and dynamic content. These configurations have been performed already:

    1. Configure the certificates used by the portal.

    2. Edit the Device Portal Management setting and the Blocklist Portal settings.

    3. Configure the certificate group tag and display language.

    Which configuration action must be taken next in Cisco ISE?

    A. Edit the Portal Page Customization settings.
    B. Enable Portal Customization with HTML.
    C. Edit the Optional content area.
    D. Enable Portal Customization with HTML and JavaScript.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 300-715 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.