Exam 300-715 topic 1 question 82 discussion

This is about endpoint purge. Not accounts. We could use the elapsed days setting here. So C is correct. https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/admin_guide/b_ise_admin_guide_22/b_ise_admin_guide_22_chapter_01100.html#concept_0776B37A2C3542189950F5DFB1961FA2

Let me reply myself, the question just addresses the problem with the enpoint, so it is clearly C

I think is B The endpoint can be in the store but if the account duration is higher than one day it doesn't matter if it is in the store or not

correct answer is B

Correct is C – Endpoint Purge Policy set to 30 days by default for GuestEndpoints group SISE ebook: “The purge policies are configurable per endpoint identity group, and specific endpoints (such as endpoints with attribute DeviceRegistrationStatus equal to Registered) can also be configured to never purge... You can also see in Figure 13-10 the default purge status of the GuestEndpoints identity group, which is set to purge any endpoints older than 30 days each day at 3:00 a.m.” ------ Incorrect: - A – “Guest Account Purge Policy ...” – not guests are being purged but ENDPOINTS. - B – “Length of access ...in the Guest Portal” – not PORTAL settings specify length of access but GUEST TYPE (also number of registered devices, sessions / simultaneous logins, access days & times, etc...) - D – “RADIUS Policy” – can’t track repeated logins

The question clearly states: "Cisco ISE does not delete the endpoint in the GuestEndpoints identity store" it doesn't simply say it allows access.

c is correct: endpoint purge

Surely this is B. You set the Maximum Access Time in the "Guest Type" section of the Portal configuration. Purge policies specify the time that it takes for a guest account or endpoint from being delete from the database completely, regardless as to whether it is expired or not.