Which of the following features of the Cisco Identity Services Engine (ISE) allows network administrators to define policies for controlling access to network resources based on user identities and user or group attributes?

Which of the following features of the Cisco Identity Services Engine (ISE) allows network administrators to define policies for controlling access to network resources based on user identities and user or group attributes?
A . Network Access Profiles
B . Identity Firewall
C . Profiling
D . TrustSec

View Answer

Answer: C

Explanation:

Option 1: Network Access Profiles: Network Access Profiles in Cisco ISE define the behavior of network devices when they are accessed by authenticated users. They are a set of policies that determine how network resources are allocated to users or user groups, and what level of access they have.

Option 2: Identity Firewall: Cisco ISE’s Identity Firewall feature enables network administrators to apply firewall policies based on user identities. It allows for granular control over network access and can enforce allow, deny, or redirect actions based on user attributes.

Option 3: Profiling: This is the correct answer. Cisco ISE’s Profiling feature is used to dynamically classify endpoints connecting to the network based on their characteristics, such as their MAC addresses, IP addresses, and DHCP options. This information is then used to enforce access policies.

Option 4: TrustSe TrustSec is a Cisco security solution that provides secure access control across the network infrastructure. While TrustSec is related to identity and access management, it is not a feature of Cisco ISE specifically.