300-715 Free Practice Test

A network engineer is configuring Cisco TrustSec and needs to ensure that the Security Group Tag is being transmitted between two devices Where in the Layer 2 frame should this be verified?

1. A. CMD filed
2. B. 802.1Q filed
3. C. Payload
4. D. 802.1 AE header

Correct Answer: A
https://www.cisco.com/c/dam/global/en_ca/assets/ciscoconnect/2014/pdfs/policy_defined_segmentation_with_tr (slide 25)

If a user reports a device lost or stolen, which portal should be used to prevent the device from accessing the network while still providing information about why the device is blocked?

1. A. Client Provisioning
2. B. Guest
3. C. BYOD
4. D. Blacklist

Correct Answer: D
https://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Borderless_Networks/Unified_Access/BYOD_Desi The Blacklist identity group is system generated and maintained by ISE to prevent access to lost or stolen devices. In this design guide, two authorization profiles are used to enforce the permissions for wireless and wired devices within the Blacklist:
Blackhole WiFi Access
Blackhole Wired Access

What is needed to configure wireless guest access on the network?

1. A. endpoint already profiled in ISE
2. B. WEBAUTH ACL for redirection
3. C. valid user account in Active Directory
4. D. Captive Portal Bypass turned on

Correct Answer: D

Which profiling probe collects the user-agent string?

1. A. DHCP
2. B. AD
3. C. HTTP
4. D. NMAP

Correct Answer: C

Refer to the exhibit.

In which scenario does this switch configuration apply?

1. A. when allowing a hub with multiple clients connected
2. B. when passing IP phone authentication
3. C. when allowing multiple IP phones to be connected
4. D. when preventing users with hypervisor

Correct Answer: A
https://www.linkedin.com/pulse/mac-authentication-bypass-priyanka-kumari#:~:text=Multi-authentication%