300-208 Exam - Implementing Cisco Secure Access Solutions (SISAS)

  1. Home
  2. Cisco
  3. 300-208 Dumps

certleader.com

Q1. Which three remediation actions are supported by the Web Agent for Windows? (Choose three.) 

A. Automatic Remediation 

B. Message text 

C. URL Link 

D. File Distribution 

E. AV definition update 

F. Launch Program 

Answer: B,C,D 

Q2. Cisco 802.1X phasing enables flexible deployments through the use of open, low-impact, and closed modes. What is a unique characteristic of the most secure mode? 

A. Granular ACLs applied prior to authentication 

B. Per user dACLs applied after successful authentication 

C. Only EAPoL traffic allowed prior to authentication 

D. Adjustable 802.1X timers to enable successful authentication 

Answer:

Q3. Cisco ISE distributed deployments support which three features? (Choose three.) 

A. global implementation of the profiler service CoA 

B. global implementation of the profiler service in Cisco ISE 

C. configuration to send system logs to the appropriate profiler node 

D. node-specific probe configuration 

E. server-specific probe configuration 

F. NetFlow probes 

Answer: A,C,D 

Q4. What is the default posture status for non-agent capable devices, such as Linux and iDevices? 

A. Unknown 

B. Validated 

C. Default 

D. Compliant 

Answer:

Q5. Which two EAP types require server side certificates? (Choose two.) 

A. EAP-TLS 

B. PEAP 

C. EAP-MD5 

D. LEAP 

E. EAP-FAST 

F. MSCHAPv2 

Answer: A,B 

Q6. When you select Centralized Web Auth in the ISE Authorization Profile, which two components host the web authentication portal? (Choose two.) 

A. ISE 

B. the WLC 

C. the access point 

D. the switch 

E. the endpoints 

Answer: B,D 

Q7. What attribute could be obtained from the SNMP query probe? 

A. FQDN 

B. CDP 

C. DHCP class identifier 

D. User agent 

Answer:

Q8. After an endpoint has completed authentication with MAB, a security violation is triggered because a different MAC address was detected. Which host mode must be active on the port? 

A. single-host mode 

B. multidomain authentication host mode 

C. multiauthentication host mode 

D. multihost mode 

Answer:

Q9. Refer to the exhibit. 

If the given configuration is applied to the object-group vpnservers, during which time period are external users able to connect? 

A. From Friday at 6:00 p.m. until Monday at 8:00 a.m. 

B. From Monday at 8:00 a.m. until Friday at 6:00 p.m. 

C. From Friday at 6:01 p.m. until Monday at 8:01 a.m. 

D. From Monday at 8:01 a.m. until Friday at 5:59 p.m. 

Answer:

Q10. In Cisco ISE, which probe must be enabled to collect profiling data using Device Sensor? 

A. RADIUS 

B. SNMPQuery 

C. SNMPTrap 

D. Network Scan 

E. Syslog 

Answer:

© All pages Copyright to by dumpslabs.com. All rights reserved. thedumpscentre.com