cisco 500-470 practice test
cisco enterprise networks sda, sdwan and ise exam for system engineers
Last exam update: Jan 14 ,2025
Page 1 out of 4. Viewing questions 1-10 out of 35
Question 1
Which two options are used as part of an ISE POV? (Choose two.)
-
A.
Youtube
-
B.
CiscoTV
-
C.
dCloud
-
D.
POV Kit
-
E.
Implementation on Production Network
Answer:
cd
Reference:
https://community.cisco.com/t5/security-documents/selling-ise-demos-and-povs/ta-p/3629542
Question 2
How many bytes does a VxLAN header add to an original Ethernet frame?
Answer:
b
Reference:
https://www.cisco.com/c/en/us/support/docs/lan-switching/vlan/212682-virtual-extensible-lan-and-ethernet-virt.html
Question 3
How does identity management solve two customer problems? (Choose two.)
-
A.
Enables and enforces 802.1X across the network platform
-
B.
Manages group membership
-
C.
Provides network visibility and security
-
D.
Increases digitization
-
E.
Achieves dynamic and adaptive network segmentation
Answer:
ce
Reference:
https://www.slideshare.net/robboyd/techwisetv-workshop-cisco-identity-services-engine-ise slide 3
Question 4
What is the role of DNA Center in SD-Access?
-
A.
Identifying and Authenticating Endpoints
-
B.
The point of exchange of reachability and policy for two domains
-
C.
Maintain a database of Endpoint IDs to Fabric Edge Nodes
-
D.
provide GUI management abstraction & Analytics via Multiple Service Apps
Question 5
Which three services must be enabled under the ISE Admin settings to successfully integrate ISE, when integrating ISE with DNA-C? (Choose three.)
-
A.
SXP services
-
B.
ServiceNow
-
C.
Threat- Centric NAC
-
D.
Infoblox
-
E.
PxGrid
-
F.
Passive Identity Service
Answer:
aef
Reference:
https://www.cisco.com/c/en/us/td/docs/cloud-systems-management/network-automation-and-management/dna-center/1-1/install/ b_dnac_install_1_1_0P2/b_dnac_install_1_1_0P2_chapter_010.pdf page 4
Question 6
Which Cisco SD WAN component provides a secure data plane with remote vEdge routers?
-
A.
vManage
-
B.
vSmart
-
C.
vBond
-
D.
vEdge
Answer:
b
Reference :
https://sdwan-docs.cisco.com/Product_Documentation/Software_Features/Release_18.1/05Security/01Security_Overview/
Data_Plane_Security_Overview
Question 7
How many vEdge router security zones (VPN's) can be configured?
-
A.
256
-
B.
32
-
C.
510
-
D.
16
Answer:
c
Reference:
https://sdwan-docs.cisco.com/Product_Documentation/Software_Features/Release_18.1/04Segmentation/02Configuring_Segmentation_(VPNs)
Question 8
Which three methods can be implemented and deployed to gather data and provide insight? (Choose three.)
-
A.
IPv6
-
B.
ARP caching
-
C.
FNF
-
D.
BUM traffic
-
E.
Syslog
-
F.
SNMP
Question 9
What two best describe self-healing functionality on vEdges? (Choose two.)
-
A.
Software reconfiguration capability allowing for dynamic reconfiguration of existing channels
-
B.
In software upgrade process, rolling back to the previously running software image when connectivity to vManage fails
-
C.
vManage detect routing outage detection to detect reachability outages and understand their scope and likely root cause
-
D.
With configuration change, rolling back the configuration change when loss of connectivity to vManage
Question 10
Which are three functions used by ISE automation BYOD flow? (Choose three.)
-
A.
Supplicant Provisioning
-
B.
Device Registration
-
C.
Certificate Enrollment
-
D.
BioMetrics
-
E.
LDAP Multi Tenant Provisioning
-
F.
Active Directory Group Membership