Designing Cisco Enterprise Networks (ENDESIGN) v1.0

Page:    1 / 4   
Exam contains 49 questions
Expand All

Which two options are primary functions of Cisco ISE? (Choose two.)

  • A. providing VPN access for any type of device
  • B. providing information about every device that touches the network
  • C. enabling WAN deployment over any type of connection
  • D. automatically enabling, disabling, or reducing allocated power to certain devices
  • E. enforcing endpoint compliance with network security policies
  • F. allocating resources


Answer : BE

What is the easiest way to enable SD-Access for all your remote sites after you have your campus SD-Access fabric up and running?

  • A. Treat all sites as one fabric domain and use the traditional physical network as the underlay.
  • B. Use a separate fabric domain for each site and use SD-WAN as the underlay.
  • C. Use a separate fabric domain for each site and use the traditional physical network as the underlay.
  • D. Treat all the sites as one fabric domain and use SD-WAN as the underlay.


Answer : A

Which are two advantages of a "one switch at a time" approach to integrating SD-Access into an existing brownfield environment? (Choose two.)

  • A. appropriate for campus and remote site environment
  • B. allows simplified testing prior to cutover
  • C. ideal for protecting recent investments while upgrading legacy hardware
  • D. involves the least risk of all approaches
  • E. opens up many new design and deployment opportunities
  • F. allows simplified roll back


Answer : AC

Which node enables Cisco ISE to share contextual information on a device with Cisco Stealthwatch?

  • A. Monitoring and Troubleshooting Node
  • B. pXGrid Controller
  • C. Policy Administration Node
  • D. Inline Posture Node


Answer : B

What statement is true regarding the current time in Enterprise Networking history?

  • A. advent of cloud computing
  • B. pace of change
  • C. pervasive use of mobile devices
  • D. advent of IoT


Answer : B

Which two options are primary functions of Cisco ISE? (Choose two.)

  • A. enforcing endpoint compliance with network security policies
  • B. providing information about every device that touches the network
  • C. allocating cloud resources
  • D. providing encryption for any type of mobile devices
  • E. automatically enabling, disabling, or reducing allocated power to certain devices
  • F. enabling WAN deployment over any type of connection


Answer : AB

Which two statements are true regarding Cisco ISE? (Choose two.)

  • A. An ISE deployment requires only a Cisco Access Control System appliance.
  • B. ISE plays a critical role in SD-Access.
  • C. Without integration with any other product, ISE can track the actual physical location of a wireless endpoint as it moves.
  • D. The major business outcomes of ISE are enhanced user experience and secure VLAN segmentation.
  • E. ISE can provide data about when a specific device connected to the network.


Answer : BE

How would Cisco ISE handle authentication for a printer that does not have a supplicant?

  • A. ISE would authenticate the printer using MAB.
  • B. ISE would authenticate the printer using MAC RADIUS authentication.
  • C. ISE would authenticate the printer using web authentication.
  • D. ISE would authenticate the printer using 802.1X authentication.


Answer : A

What do most customers need in regards to guest access?

  • A. PKI service for personal assets
  • B. automated registration and provisioning of personal devices in a self-service model
  • C. complete automation of the guest access life cycle
  • D. assistance with writing new firewall rules


Answer : B

Which is a benefit of a cloud-based SD-WAN deployment?

  • A. might be required for compliance with industry standards
  • B. instant scale
  • C. security never an issue
  • D. controller availability never an issue


Answer : B

Which SD-WAN control plane deployment model is recommended for customers who want transport redundancy for the control plane and need to meet security requirements?

  • A. hybrid cloud controller with public IPs on controllers
  • B. Viptela-hosted controllers/public cloud
  • C. public cloud controller
  • D. hybrid cloud controller with private IPs on controllers


Answer : D

Which option will help build your customers platform during the discovery phase?

  • A. POV report
  • B. detailed design
  • C. business case
  • D. high-level design


Answer : C

Which feature is supported on the Cisco vEdge platform?

  • A. reporting
  • B. license enforcement
  • C. non-Ethernet interfaces
  • D. IPv6 transport (WAN)


Answer : D

Which are two advantages of a “one switch at a time” approach to integrating SD-Access into an existing brownfield environment? (Choose two.)

  • A. allows simplified roll back
  • B. ideal for protecting recent investments while upgrading legacy hardware
  • C. appropriate for campus and remote site environment
  • D. involves the least risk of all approaches
  • E. allows simplified testing prior to cutover


Answer : AE

Which feature of Cisco ISE alerts an administrator if an endpoint attempts to use the MAC address of a known endpoint to gain network access?

  • A. Access control
  • B. Device sensor
  • C. Profile policies
  • D. Anomaly detection


Answer : D

Page:    1 / 4   
Exam contains 49 questions
Expand All

Talk to us!

Have any questions or issues ? Please dont hesitate to contact us

[email protected]

Certlibrary.com is owned by MBS Tech Limited: Room 1905 Nam Wo Hong Building, 148 Wing Lok Street, Sheung Wan, Hong Kong. Company registration number: 2310926
Certlibrary doesn't offer Real Microsoft Exam Questions. Certlibrary Materials do not contain actual questions and answers from Cisco's Certification Exams.
CFA Institute does not endorse, promote or warrant the accuracy or quality of Certlibrary. CFA® and Chartered Financial Analyst® are registered trademarks owned by CFA Institute.
Terms & Conditions | Privacy Policy