Cisco
700-765 · Question #36
700-765 Question #36: Real Exam Question with Answer & Explanation
The correct answer is B. guest access management D. application visibility and control. Cisco Identity Services Engine (ISE) delivers guest access management and application visibility and control as part of its policy-based network access capabilities.
Cisco Security Product Solutions
Question
Which tow features are part of Cisco identity Services Engine? (Choose two)
Options
- Asecure remote access
- Bguest access management
- CSSL decryption
- Dapplication visibility and control
- Edevice profiling
- Ffile-type blocking
Explanation
Cisco Identity Services Engine (ISE) delivers guest access management and application visibility and control as part of its policy-based network access capabilities.
Common mistakes.
- A. Secure remote access via VPN is handled by Cisco AnyConnect paired with ASA or Firepower headends; ISE provides posture assessment for remote sessions but is not the access solution itself.
- C. SSL decryption is a function of next-generation firewalls such as Cisco Firepower Threat Defense, not a capability provided natively by ISE.
- E. Device profiling, while associated with ISE in some contexts, is not one of the two features this question identifies as primary ISE capabilities; the focus here is on guest access and application-aware policy enforcement.
- F. File-type blocking is a threat defense feature associated with Cisco Firepower and Cisco Secure Malware Analytics (AMP), not part of ISE's identity and access control feature set.
Concept tested. Cisco ISE guest access and application visibility features
Reference. https://www.cisco.com/c/en/us/products/security/identity-services-engine/index.html
Topics
#Cisco ISE#identity services#guest access#application visibility
Community Discussion
No community discussion yet for this question.