ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 350-701 All Questions

View all questions & answers for the 350-701 exam
Go to Exam

Exam 350-701 topic 1 question 246 discussion

Actual exam question from Cisco's 350-701
Question #: 246
Topic #: 1
[All 350-701 Questions]

What must be configured in Cisco ISE to enforce reauthentication of an endpoint session when an endpoint is deleted from an identity group?

  • A. SNMP probe
  • B. CoA
  • C. external identity source
  • D. posture assessment
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️
by Minipaf at May 2, 2021, 9:51 a.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
entitty
Highly Voted 2 years, 6 months ago
b - COA See -https://www.cisco.com/c/en/us/td/docs/security/ise/2-1/admin_guide/b_ise_admin_guide_21/b_ise_admin_guide_20_chapter_010100.html - search for Endpoint deleted: When an endpoint is deleted from the Endpoints page and the endpoint is disconnected or removed from the network
upvoted 20 times
...
Minipaf
Highly Voted 2 years, 7 months ago
Answer is B CoA.
upvoted 10 times
...
sull3y
Most Recent 10 months ago
B. CoA (Change of Authorization) Cisco ISE (Identity Services Engine) is a policy control platform that provides secure access control and BYOD (Bring Your Own Device) support. To enforce reauthentication of an endpoint session when an endpoint is deleted from an identity group, a Change of Authorization (CoA) must be configured in ISE. CoA allows for dynamic changes to the authorization level of an endpoint, and can be used to trigger reauthentication when an endpoint is deleted from an identity group. This helps to ensure that the endpoint remains compliant with security policies and that any potential security risks are addressed in real-time.
upvoted 2 times
...
nomanlands
1 year, 4 months ago
Selected Answer: B
B, deleting causes a CoA to occur
upvoted 1 times
...
MoII
2 years ago
Would go with Answer: A here
upvoted 1 times
MoII
2 years ago
https://community.cisco.com/t5/network-access-control/do-i-really-need-the-snmp-query-probe/td-p/2915326
upvoted 1 times
...
...
Steve122
2 years, 1 month ago
C The profiling service issues the change of authorization in the following cases: - Endpoint deleted: When an endpoint is deleted from the Endpoints page and the endpoint is disconnected or removed from the network.
upvoted 1 times
Steve122
2 years, 1 month ago
not C, B
upvoted 1 times
...
...
MoII
2 years, 1 month ago
Answer: A makes sense https://www.cisco.com/c/en/us/td/docs/security/ise/2-1/admin_guide/b_ise_admin_guide_21/b_ise_admin_guide_20_chapter_010100.html Cisco ISE does not issue a CoA for the following reasons: An Endpoint disconnected from the network
upvoted 2 times
killbots
1 year, 7 months ago
its not disconnecting. its being deleted from the policy. 2 different things. Its a definite B.
upvoted 1 times
...
...
klu16
2 years, 3 months ago
Yeah, B...
upvoted 4 times
...
acc2326
2 years, 7 months ago
CoA for sure
upvoted 5 times
...
kakakayayaya
2 years, 7 months ago
SNMP probe - no use for CoA
upvoted 4 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel