Which three components comprise the Cisco ISE profiler?

Which three components comprise the Cisco ISE profiler? (Choose three.)

Which three components comprise the Cisco ISE profiler? (Choose three.)

A.
the sensor, which contains one or more probes

B.
the probe manager

C.
a monitoring tool that connects to the Cisco ISE

D.
the trigger, which activates ACLsE. an analyzer, which uses configured policies to evaluate endpoints

F.
a remitter tool, which fails over to redundant profilers

Show Hint

Leave a Reply 6

Your email address will not be published. Required fields are marked *

Jay

Jay

Says choose 3 but only 2 show as answer?

Reply

Bo

Bo

One letter is missing here… E) An analyzer…. This should be an answer, as well. The sensor, the probe and an analyzer…

Reply

Sr. Lobo

Sr. Lobo

http://www.cisco.com/en/US/docs/security/ise/1.0/user_guide/ise10_prof_pol.html

The profiler is comprised of the following components:

•The sensor contains a number of probes. The probes capture network packets by querying network access devices, and forward the attributes and their attribute values that are collected from the endpoints to the analyzer.

The probe manager within the sensor provides support to the profiler service, initializing and controlling various probes that run on the sensor. The probe manager allows you to configure probes to start and stop collecting the attributes and their values from the endpoints. An event manager within the sensor allows communication of the events between the probes in the probe manager.

A forwarder stores endpoints into the Cisco ISE database along with their attributes data, and then notifies the analyzer of new endpoints detected on your network. The analyzer classifies endpoints to the endpoint identity groups and stores endpoints with the matched profiles in the database.

•An analyzer evaluates endpoints using the configured policies and the identity groups to match the attributes and their attribute values collected, which classifies endpoints to the specified group and stores endpoints with the matched profile in the Cisco ISE database.

Reply

Df4lt

Df4lt

Does anybody study from this questions and pass the exam?

Reply

Pance

Pance

2018/Jan New 300-208 Exam Questions can be viewed at:

QUESTION 192
Which three host modes support MACsec? (Choose three.)

A. multidomain authentication host mode
B. multihost mode
C. multi-MAC host mode
D. single-host mode
E. dual-host mode
F. multi-auth host mode

Answer: ABD

QUESTION 193
You are troubleshooting wired 802.1X authentications and see the following error: “Authentication failed: 22040 Wrong password or invalid shared secret.” What should you inspect to determine the problem?

A. RADIUS shared secret
B. Active Directory shared secret
C. Identity source sequence
D. TACACS+ shared secret
E. Certificate authentication profile

Answer: A

QUESTION 194
Refer to the exhibit. You are troubleshooting RADIUS issues on the network and the debug radius command returns the given output. What is the most likely reason for the failure?

A. An invalid username or password was entered.
B. The RADIUS port is incorrect.
C. The NAD is untrusted by the RADIUS server.
D. The RADIUS server is unreachable.
E. RADIUS shared secret does not match

Answer: A

QUESTION 195
Which devices support download of environmental data and IP from Cisco ISE to SGT bindings in their SGFW implementation?

A. Cisco ASA devices
B. Cisco ISR G2 and later devices with ZBFW
C. Cisco ISR G3 devices with ZBFW
D. Cisco ASR devices with ZBFW

Answer: A

QUESTION 196
In Cisco ISE 1.3, where is BYOD enabled with dual-SSID onboarding?

A. client provisioning policy
B. client provisioning resources
C. BYOD portal
D. guest portal

Answer: D

QUESTION 197
Which description of the purpose of the Continue option in an authentication policy rule is true?

A. It allows Cisco ISE to check the list of rules in an authentication policy until there is a match.
B. It sends an authentication to the next subrule within the same authentication rule.
C. It allows Cisco ISE to proceed to the authorization policy regardless of authentication pass/fail.
D. It sends an authentication to the selected identity store.
E. It causes Cisco ISE to ignore the NAD because NAD will treat the Cisco ISE server as dead.

Answer: C

QUESTION 198
How many days does Cisco ISE wait before it purges a session from the active session list if no RADIUS Accounting STOP message is received?

A. 1
B. 5
C. 10
D. 15

Answer: B

QUESTION 199
A user configured a Cisco Identity Service Engine and switch to work with downloadable access list for wired dot1x users, though it is failing to work. Which command must be added to address the issue?

A. ip dhcp snooping
B. ip device tracking
C. dot1x pae authenticator
D. aaa authentication dot1x default group radius

Answer: B

QUESTION 201
Refer to the exhibit. In a distributed deployment of Cisco ISE, which column in Figure 1 is used to fill in the Host Name field in Figure 2 to collect captures on Cisco ISE while authenticating the specific endpoint?

A. Server
B. Network Device
C. Endpoint ID
D. Identity

Answer: A

QUESTION 202
Which ISE feature is used to facilitate a BYOD deployment?

A. self-service personal device registration and onboarding
B. Guest Service Sponsor Portal
C. Local Web Auth
D. Guest Identity Source Sequence

Answer: A

Reply