ISE Probes for Distinguishing iPad and MacBook Pro
Question
Which two ISE Probes would be required to distinguish accurately the difference between an iPad and a MacBook Pro? (Choose two.)
Answers
Explanations
Click on the arrows to vote for the correct answer
A. B. C. D. E. F.AE.
To accurately distinguish between an iPad and a MacBook Pro, the following two ISE Probes would be required:
A. DHCP or DHCPSPAN E. HTTP
Explanation:
A. DHCP or DHCPSPAN: Dynamic Host Configuration Protocol (DHCP) is a network protocol that allows network administrators to automatically assign IP addresses and other network configuration parameters to devices on a network. DHCP Probe can be used to identify the device type based on the DHCP options provided by the client during the DHCP negotiation process. DHCPSPAN is a proprietary protocol that allows Cisco switches to span DHCP requests and responses to an ISE server for monitoring and security purposes. By analyzing the DHCP request and response packets, ISE can determine the device type, vendor, and operating system.
E. HTTP: Hypertext Transfer Protocol (HTTP) is a protocol used for transferring data over the World Wide Web. HTTP Probe can be used to identify the device type by analyzing the User-Agent string in the HTTP request header. The User-Agent string contains information about the browser and operating system of the client device. By comparing the User-Agent string with a database of known device types and operating systems, ISE can accurately identify the device type.
B, C, D, and F are not applicable to distinguish between an iPad and a MacBook Pro because: B. SNMPTRAP: Simple Network Management Protocol (SNMP) is a protocol used for managing and monitoring network devices. SNMPTRAP is a type of SNMP message used to alert the management system of a network device event. SNMPTRAP can provide information about the type of network device generating the trap, but it does not provide information about the client device connected to the network device.
C. SNMPQUERY: SNMPQUERY is another type of SNMP message used to retrieve information from network devices. Like SNMPTRAP, SNMPQUERY can provide information about the type of network device, but it does not provide information about the client device.
D. NESSUS: Nessus is a vulnerability scanner that can be used to identify security vulnerabilities on network devices. While it can provide information about the operating system and applications installed on a network device, it does not provide information about the client device connected to the network device.
F. DHCP TRAP: DHCP TRAP is a feature of some network devices that allows them to send a notification to a management system when a client device connects to the network. However, DHCP TRAP does not provide information about the client device itself.
