300-715 · Question #363
300-715 Question #363: Real Exam Question with Answer & Explanation
The correct answer is A: pxGrid. {"question_number": 7, "question": "An engineer is configuring a new Cisco ISE node. The Cisco ISE must make authorization decisions based on the threat and vulnerability attributes received from the threat and vulnerability adapters...", "correct_answer": "A", "explanation": "Ci
Question
An engineer is configuring a new Cisco ISE node. The Cisco ISE must make authorization decisions based on the threat and vulnerability attributes received from the threat and vulnerability adapters. Which persona must be enabled?
Options
- ApxGrid
- BPolicy Service
- CAdministration
- DMonitoring
Explanation
{"question_number": 7, "question": "An engineer is configuring a new Cisco ISE node. The Cisco ISE must make authorization decisions based on the threat and vulnerability attributes received from the threat and vulnerability adapters...", "correct_answer": "A", "explanation": "Cisco ISE integrates with third-party threat and vulnerability management (TVM) systems (such as Rapid7, Qualys, or Tenable) via the pxGrid (Platform Exchange Grid) framework. These TVM adapters publish threat and vulnerability assessment data (e.g., CVSS scores, vulnerability IDs) to ISE through pxGrid. For ISE to receive, process, and apply this contextual threat data in its authorization policies (e.g., quarantining endpoints with critical vulnerabilities), the pxGrid persona (A) must be enabled on the ISE node. The Policy Service persona handles AAA decisions, but the data ingestion from TVM adapters specifically requires pxGrid to be active.", "generated_by": "claude-sonnet", "llm_judge_score": 4}
Topics
Community Discussion
No community discussion yet for this question.