Implementing Cisco Secure Access Solutions (SISAS, legacy) — Question 19

What steps must you perform to deploy a CA-signed identify certificate on an ISE device?

Answer options

• A. 1. Download the CA server certificate. 2. Generate a signing request and save it as a file. 3. Access the CA server and submit the ISE request. 4. Install the issued certificate on the ISE.
• B. 1. Download the CA server certificate. 2. Generate a signing request and save it as a file. 3. Access the CA server and submit the ISE request. 4. Install the issued certificate on the CA server.
• C. 1. Generate a signing request and save it as a file. 2. Download the CA server certificate. 3. Access the ISE server and submit the CA request. 4. Install the issued certificate on the CA server.
• D. 1. Generate a signing request and save it as a file. 2. Download the CA server certificate. 3. Access the CA server and submit the ISE request.

Correct answer: D

Explanation

The correct answer is D because it outlines the necessary steps to generate a signing request, download the CA server certificate, and submit the request to the CA server without any additional steps. Option A incorrectly states that the issued certificate should be installed on the ISE, while option B suggests installing it on the CA server, which is not the correct process. Option C misplaces the step of accessing the ISE server instead of the CA server.