SISE 300-715 - Acronyms and Definitions

Question 1

CAP

Answer 1

Certificate Authentication Profile
Used by ISE as the identity source for certificate-based authentications. It defines which field of an x.509 certificate will be the Principle Username x.509 Attribute.

Question 2

ISS

Answer 2

Identity Source Sequence

Question 3

EAP-TLS

Answer 3

Extensible Authentication Protocol over Transport Layer Security
One of the EAP types which can be used by ISE.

Question 4

OCSP

Answer 4

Online Certificate Status Protocol
A protocol which can be used by ISE to get near-real time updates of x.509 certificate status changes from the issuing certificate authority (CA). Created as an alternative to Certificate Revocation Lists (CRLs). OCSP messages are typically communicated over HTTP.

Question 5

CRL

Answer 5

Certificate Revocation List

Question 6

NTP

Answer 6

Network Time Protocol

Question 7

SSL

Answer 7

Secure Socket Layer

Question 8

SCEP

Answer 8

Simple Certificate Enrollment Protocol

Question 9

NAD

Answer 9

Network Access Device
NADs include switches, wireless LAN controllers, and VPN concentrators. They are used to enforce ISE policies on endpoints.

Question 10

NDG

Answer 10

Network Device Group
A logical grouping of Network Access Devices by type, location, deployment stage, or any other logical grouping an organization might want.