The security team identified a rogue endpoint with MAC address 00:46:91:02:28:4A attached to the network. Which action must security engineer take within Cisco ISE to effectively
restrict network access for this endpoint?
Cisco ISE provides a feature called Adaptive Network Control (ANC) that allows administrators to apply policies to endpoints based on their behavior or status1. One of the ANC policies is Quarantine, which restricts network access for an endpoint by assigning it to a limited-access VLAN or applying an access control list (ACL) on the switch port2. To use the Quarantine policy, the administrator must add the MAC address of the rogue endpoint to the endpoint quarantine list in ISE2. This will trigger a change of authorization (CoA) for the endpoint and apply the Quarantine policy. The other options are not effective for restricting network access for a rogue endpoint, as they do not use the ANC feature of ISE.
Latonia
6 months agoGianna
5 months agoMarva
5 months agoDierdre
6 months agoLemuel
6 months agoBerry
6 months agoYasuko
6 months agoDahlia
6 months agoHoney
6 months agoFiliberto
6 months agoGerardo
7 months agoAntonio
7 months agoGussie
7 months agoReena
6 months agoKiley
6 months agoBenton
6 months agoBernadine
6 months agoHyun
6 months agoThersa
6 months ago