Implementing and Configuring Cisco Identity Services Engine (SISE) — Question 73

A Cisco ISE administrator needs to ensure that guest endpoint registrations are only valid for 1 day. When testing the guest policy flow, the administrator sees that the Cisco ISE does not delete the endpoint in the GuestEndpoints identity store after 1 day and allows access to the guest network after that period.
Which configuration is causing this problem?

Answer options

• A. The Guest Account Purge Policy is set to 15 days.
• B. The length of access is set to 7 days in the Guest Portal Settings.
• C. The Endpoint Purge Policy is set to 30 days for guest devices.
• D. The RADIUS policy set for guest access is set to allow repeated authentication of the same device.

Correct answer: C

Explanation

The correct answer is C because the Endpoint Purge Policy determines how long guest device entries remain in the identity store. If it is set to 30 days, endpoints will not be deleted after one day as intended. The other options pertain to different settings that do not directly impact the deletion of endpoints from the identity store.