The security team identified a rogue endpoint with MAC address 00:47:44:40:54:1A attached to the network. Which action must security engineer take within Cisco ISE to effectively restrict network access for this endpoint?
A.
Create authentication policy to force reauthentication.
B.
Configure access control list on network switches to block traffic.
C.
Add MAC address to the endpoint quarantine list.
D.
Implement authentication policy to deny access.
The term “quarantine” in ISE is a little misleading. Quarantine is just an internal label that can be assigned to endpoints. What ISE does with an endpoint that has been labeled with “quarantine” varies depending on how a corresponding security policy is configured.
Therefore the answer would be D.
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.300-715 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
one_1996
3 months, 1 week agowowako
7 months, 3 weeks ago