Based on https://www.cisco.com/c/en/us/td/docs/security/ise/3-0/admin_guide/b_ISE_admin_3_0/b_ISE_admin_30_compliance.html?bookSearch=true#id_17065
It helps AnyConnect agent to support newer additions. Once the AnyConnect agents retrieve this support information, they check the latest definition information from the periodically updated se-checks.xml file (which is published along with the se-rules.xml file in the se-templates.tar.gz archive), and determine whether clients are compliant with the posture policies. Depending upon what is supported by the library for a particular antivirus, antispyware, antimalware, disk encryption, or patch management product, the appropriate requirements will be sent to the AnyConnect agents for validating their existence, and the status of the particular products on the clients during posture validation.
Its A.
The compliance check what thing is missing in the endpoint and if something is missing this not will permit the access to the network.
Answer A its the only one answer possible here, no tricky answers
I will go with B.
When you do the compliance checks on device, you will know if you had any malicious activity in the device, you are doing deep inspections, you are not doing a checklist of what software the device has.
My bad, I didnt read B answer right. It talks about endpoints, but the DNA compliance check is for network devices, while ISe compliance check is for endpoints. ISE does not check for malicious activities, it checks for posture compliance: A is correct.
A for compliance check on ISE (posture of one device - end devices), B for compliance check of all devices on the network (DNA - network devices)
I hope the exam will be more clear about this.
B seems like the write answer to me.
https://www.cisco.com/c/en/us/td/docs/cloud-systems-management/network-automation-and-management/dna-center/2-1-2/user_guide/b_cisco_dna_center_ug_2_1_2/m-compliance-audit-for-network-devices.html
GREAT LINK. The problem is the question says "Compliance Check" - DNA center does compliance checks, ISE does Profiling and Posture - not "Compliance Checks" Now here is the RUB. None of the answers are correct for "DNA Center Compliance Checks" All the answers seem to be written for ISE, in which case Answer A is the best answer. Its just a bad question in general.
This section is not available anymore. Please use the main Exam Page.350-701 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
klu16
Highly Voted 1 year, 2 months agojccastiyo
Highly Voted 11 months, 3 weeks agodjsonicdh
Most Recent 6 months, 2 weeks agojaciro11
11 months, 2 weeks agoMoII
11 months, 2 weeks agoeazy99
1 year, 1 month agoDinges
1 year, 4 months agoDinges
1 year, 4 months agoitisfakemaillol
1 year, 4 months agostatikd
1 year, 4 months agoeddy12345
1 year, 1 month agoitisfakemaillol
1 year, 4 months ago