300-715 SISE

Current Status
Not Enrolled
Get Started

Implementing and Configuring Cisco Identity Services Engine v1.1 (300-715)

Exam Description: Implementing and Configuring Cisco Identity Services Engine v1.1 (SISE 300-715) is a 90-minute exam associated with the CCNP Security Certification. This exam tests a candidate’s knowledge of Cisco Identity Services Engine (ISE), including architecture and deployment, policy
enforcement, Web Auth and guest services, profiler, BYOD, endpoint compliance, and network access device administration. The course, Implementing and Configuring Cisco Identity Services Engine, helps candidates prepare for this exam.

The following topics are general guidelines for the content likely to be included in the exam. However, other related topics may also appear on any specific delivery of the exam. To better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.

  1. 10% Architecture and Deployment
    1. 1.1 Configure personas
    2. 1.2 Describe deployment options
    3. 1.3 Describe the hardware and virtual machine performance specifications
    4. 1.4 Describe zero-touch provisioning
  2. 25% Policy Enforcement
    1. Configure native AD and LDAP
    2. Describe identity store options
      1. LDAP
      2. AD
      3. PKI
      4. Multifactor authentication
      5. Local
      6. SAML IDP
      7. Rest ID
    3. Configure wireless network access using 802.1X
    4. Configure wired network access using 802.1X and IBNS 2.0
      1. Monitor mode
      2. Low impact
      3. Closed mode
    5. Implement MAB
    6. Configure Cisco TrustSec
    7. Configure policies including authentication and authorization profiles
  3. 15% Web Auth and Guest Services
    1. Configure web authentication
    2. Configure guest access services
    3. Configure sponsor and guest portals
  4. 15% Profiler
    1. Implement profiler services
    2. Implement probes
    3. Implement CoA
    4. Configure endpoint identity management
  5. 15% BYOD
    1. Describe Cisco BYOD functionality
      1. Use cases and requirements
      2. Solution components
      3. BYOD flow
    2. Configure BYOD device onboarding using internal CA with Cisco switches and Cisco wireless LAN controllers
    3. Configure certificates for BYOD
    4. Configure block list/allow list
  6. 10% Endpoint Compliance
    1. Describe endpoint compliance, posture services, and client provisioning
    2. Configure posture conditions and policy, and client provisioning
    3. Configure the compliance module
    4. Configure posture agents and operational modes
    5. Describe supplicant, supplicant options, authenticator, and server
  7. 10% Network Access Device Administration
    1. Compare AAA protocols
    2. Configure TACACS+ device administration and command authorization