300-715 · Question #352
300-715 Question #352: Real Exam Question with Answer & Explanation
Sign in or unlock 300-715 to reveal the answer and full explanation for question #352. The question stem and answer options stay visible for context.
Question
An administrator must configure Cisco ISE to authenticate the administrative superuser to manage a Cisco Adaptive Security Appliance firewall. The solution must meet the requirements: - The user must be authenticated against Microsoft AD. - The user must have full management administrative access to the Cisco Adaptive Security Appliance firewall. - The user must not use the enable command. The configurations were performed: - joined Cisco ISE to AD and retrieved AD groups - added the Cisco Adaptive Security Appliance firewall - enabled Device Admin Service in Cisco ISE - configured TACACS command sets - configured a TACACS profile - configured an authorization policy - configured the Cisco Adaptive Security Appliance firewall for authentication and authorization Which two actions must be performed in Cisco ISE? (Choose two.)
Options
- AConfigure an authentication profile on Cisco ISE.
- BSet Default Privilege to 1 and Maximum Privilege to 15 in the TACACS profile.
- CAdd all authorized admin commands to the TACACS profile.
- DSet Default Privilege to 15 and Maximum Privilege to 15 in the TACACS profile.
- ESelect "Permit any command that is not listed below" in the TACACS profile.
Unlock 300-715 to see the answer
You've previewed enough free 300-715 questions. Unlock 300-715 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.