A network administrator must use Cisco ISE to check whether endpoints have the correct version of antivirus installed. Which action must be taken to allow this capability?
A.
Create a Cisco AnyConnect Network Visibility Module configuration profile to send the antivirus information of the endpoints to Cisco ISE.
B.
Configure Cisco ISE to push the HostScan package to the endpoints to check for the antivirus version.
C.
Configure a native supplicant profile to be used for checking the antivirus version.
D.
Create a Cisco AnyConnect configuration within Cisco ISE for the Compliance Module and associated configuration files.
ciscopress book page 637:
When using posture assessment, it is critical to keep the compliance modules as up to date
as possible. Many TAC cases are opened due to an endpoint failing posture checks. The remedy for such cases is simply to update the ISE and AnyConnect compliance modules because the client is running a newer version of some antivirus software, and a new compliance module is required to detect that new version correctly.
Also look at ciscopress book page 642:
â– AnyConnect Configuration: These configurations are built per operating system
(Windows and macOS) and control what AnyConnect modules should be provisioned
through the CPP and what PROFILES should be leveraged per module.
â– AnyConnect Posture Profile: This is the posture configuration for the SYSTEM SCAN MODULE, where you control all aspects of the posture module, but it is not called a
configuration; rather, it is called a profile for alignment with the AnyConnect naming
convention in Cisco’s ASA.
I think the Answer B.
The HostScan package is a component of Cisco AnyConnect that can be used to check endpoints for compliance with network security policies. The package includes a number of pre-configured checks that can be used to verify that the endpoint is running the correct version of antivirus software, has the latest security patches installed, and meets other security requirements.
To use HostScan to check the antivirus version on endpoints, the administrator must configure Cisco ISE to push the HostScan package to the endpoints when they connect to the network. Once the HostScan package is installed on the endpoint, it can be used to check for the presence and version of the antivirus software installed on the endpoint.
Option D, The Compliance Module in Cisco AnyConnect is used to enforce network security policies and check for compliance with regulatory requirements.
I think you are not right. Refer to this statement in the official book: "It is possible to do posture assessment with application access control using the Cisco Duo Security solution, and it is also possible to perform endpoint posture assessment with a Cisco ASA, using the AnyConnect HostScan module, which ties in to the ASA’s Dynamic Access Policy (DAP) engine."
Also the link provided below by IlPerdan0 convinces me to go for D option.
Answer D. You configure the compliancemodule of Anyconnect.
upvoted 3 times
...
This section is not available anymore. Please use the main Exam Page.300-715 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
[Removed]
10Â months, 1Â week agoIETF1
12Â months agofaridh
1Â year, 2Â months agozsrite
1Â year, 8Â months agoYmerG
1Â year, 7Â months agoIlPerdan0
1Â year, 10Â months agoElCobra90
1Â year, 3Â months agorealmephisto
1Â year, 10Â months ago