Failed SISAS
leugenel
Member Posts: 27 ■□□□□□□□□□
Failed today...
Exam wasn't what I expected. Most of the questions are very granular and require memorization, sometimes it feels like they choose random checkbox from the ISE or Radius attribute and asking you what is it (or what is the default value).
Screen resolution was very small so the monitor barely fit a window from the lab. Loosing a lot of time on scrolling, moving windows, switching between multiple windows, since none of the ISE windows fits into screen.
I had some questions on ISE 2.0 and TACACS. Also I thought that exam is for ISE 1.2 but everything was 1.3 - not sure what is the difference between them.
Was using CBT Nuggets, INE, official cert guide and had ISE installed in my lab. All that will not be enough in my opinion.
Will have to study more I guess and pay more attention to details this time. Don't expect general questions like what is the difference between authentication and authorization or something like that.
This time will go through ISE configuration guide and focus on details. Also will reinstall my lab and try to configure everything from scratch.
Exam wasn't what I expected. Most of the questions are very granular and require memorization, sometimes it feels like they choose random checkbox from the ISE or Radius attribute and asking you what is it (or what is the default value).
Screen resolution was very small so the monitor barely fit a window from the lab. Loosing a lot of time on scrolling, moving windows, switching between multiple windows, since none of the ISE windows fits into screen.
I had some questions on ISE 2.0 and TACACS. Also I thought that exam is for ISE 1.2 but everything was 1.3 - not sure what is the difference between them.
Was using CBT Nuggets, INE, official cert guide and had ISE installed in my lab. All that will not be enough in my opinion.
Will have to study more I guess and pay more attention to details this time. Don't expect general questions like what is the difference between authentication and authorization or something like that.
This time will go through ISE configuration guide and focus on details. Also will reinstall my lab and try to configure everything from scratch.
Comments
Have you ever dealt with UNIX regular expressions? I found a good explanation here: http://www.grymoire.com/Unix/Regular.html#uh-4
In here Cisco Identity Services Engine Administrator Guide, Release 2.0 - Control Device Administration Using TACACS+ [Cisco Identity Services Engine] - Cisco they don't mention what "." matches.
"show .*" will match "show " with an argument of at least one character. Since you can't run show without any arguments anyways, it's functionally equivalent to "show *".
According to SISAS official guide:
Multiple Host — Multiple Host (Multi-Host) mode is not commonly used but is still a valid option. Much like Multi-Auth mode, Multi-Host mode is an extension to MDA. One authentication exists on the voice domain, and one authentication exists on the data domain. All other hosts on the data domain are allowed onto the network using the first successful authentication. It’s an authenticate-one-allow-therest type of model. The IP Phone solutions described in the MDA section are still applicable to Mult-Auth mode.
But Cisco site says
multi-host-Multiple hosts on an 802.1X-authorized port after a authenticating a single host.
So is it 1 for voice AND 1 for data (the rest clients use the first successful authenticationfirst successful authentication) or just one authentication total per port (voice or data)??
A bit confused here.
Thanks,
Congrats!!! How many more exams to go? Were you using a trial of ISE? I need to get this for my home lab too.
That's what I'm using. It's a great tool, not perfect. The ASAv has some limitations compared to a physical box, but it's still good.
OSCP | CISSP | CREST CRT | CCNP | ITIL
Goal: CREST CCT | PMP
Thanks!