Cisco 500-490 Online Practice
Questions and Exam Preparation
500-490 Exam Details
Exam Code
:500-490
Exam Name
:Designing Cisco Enterprise Networks (ENDESIGN)
Certification
:Cisco Certifications
Vendor
:Cisco
Total Questions
:35 Q&As
Last Updated
:Jun 21, 2026
Cisco 500-490 Online Questions &
Answers
Question 1:
Which two statements are true regarding Cisco ISE? (Choose two.)
A. The major business outcomes of ISE are enhanced user experience and secure VLAN segmentation. B. ISE plays a critical role in SD-Access. C. Without integration with any other product, ISE can track the actual physical location of a wireless endpoint as it moves. D. ISE can provide data about when a specific device connected to the network. E. An ISE deployment requires only a Cisco ISE network access control appliance.
B. ISE plays a critical role in SD-Access. D. ISE can provide data about when a specific device connected to the network.
Question 2:
How would Cisco ISE handle authentication for your printer that does not have a supplicant?
A. ISE would not authenticate the printer as printers are not subject to ISE authentication. B. ISE would authenticate the printer using 802.1X authentication. C. ISE would authenticate the printer using MAB. D. ISE would authenticate the printer using web authentication. E. ISE would authenticate the printer using MAC RADIUS authentication.
C. ISE would authenticate the printer using MAB.
Question 3:
Which two options are primary functions of Cisco ISE? (Choose two.)
A. providing VPN access for any type of device B. providing information about every device that touches the network C. enabling WAN deployment over any type of connection D. automatically enabling, disabling, or reducing allocated power to certain devices E. enforcing endpoint compliance with network security policies F. allocating resources
B. providing information about every device that touches the network E. enforcing endpoint compliance with network security policies
Question 4:
What are the three foundational elements required for the new operational paradigm? (Choose three.)
A. centralization B. assurance C. application QoS D. multiple technologies at multiple OSI layers E. policy-based automated provisioning of network F. fabric
B. assurance E. policy-based automated provisioning of network F. fabric
Question 5:
Which three ways are SD-Access and ACI Fabric similar? (Choose three.)
A. use of overlays B. use of Virtual Network IDs C. focus on user endpoints D. use of group policy E. use of Endpoint Groups F. use of Scalable Group Tags
A. use of overlays B. use of Virtual Network IDs C. focus on user endpoints
Question 6:
Which Cisco product were incorporated into Cisco ISE between ISE releases 2.0 and 2.3?
A. Cisco ASA B. Cisco ESA C. Cisco ACS D. Cisco WSA
C. Cisco ACS
Question 7:
What statement is true regarding the current time in Enterprise Networking history?
A. advent of cloud computing B. pace of change C. pervasive use of mobile devices D. advent of IoT
B. pace of change
Question 8:
Which Cisco product supports SD-Access and specifically built to address new challenges faced by enterprises?
A. Nexus 7700 w/ Sup2E and M3 line cards B. ISR 4221 C. Catalyst 9500 D. ASR 1000-HX E. CSRv virtual router F. Catalyst 6807-XL w/Sup6T and C6800 10G line cards
B. ISR 4221
Question 9:
Which two statements regarding Cisco SD-WAN vEdge routers can mitigate DoS attacks against the infrastructure? (Choose two.)
A. Open Certificate Authority and automated enrollment feature. B. By default, all incoming traffic is denied at the transport (WAN) side interfaces. C. Only authorized controllers are allowed to communicate back to the vEdge router after the vEdge router establishes connections with the controllers. D. In case of direct Internet access, the only traffic allowed back is the traffic matching the state table entries on the vEdge router. E. The vEdge routers run on hardened Linux operating systems.
C. Only authorized controllers are allowed to communicate back to the vEdge router after the vEdge router establishes connections with the controllers. E. The vEdge routers run on hardened Linux operating systems.
Question 10:
Which are two advantages of a "one switch at a time" approach to integrating SD-Access into an existing brownfield environment? (Choose two.)
A. appropriate for campus and remote site environment B. allows simplified testing prior to cutover C. ideal for protecting recent investments while upgrading legacy hardware D. involves the least risk of all approaches E. opens up many new design and deployment opportunities F. allows simplified roll back
A. appropriate for campus and remote site environment C. ideal for protecting recent investments while upgrading legacy hardware
Nowadays, the certification exams become more and more important and required by more and more
enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare
for the exam in a short time with less efforts? How to get a ideal result and how to find the
most reliable resources? Here on Vcedump.com, you will find all the answers.
Vcedump.com provide not only Cisco exam questions,
answers and explanations but also complete assistance on your exam preparation and certification
application. If you are confused on your 500-490 exam preparations
and Cisco certification application, do not hesitate to visit our
Vcedump.com to find your solutions here.