Refer to the exhibit.

Which statement about the authentication protocol used in the configuration is true?

A.

The authentication request contains only a password

B.

The authentication request contains only a username

C.

The authentication and authorization requests are grouped in a single packet

D.

There are separate authentication and authorization request packets

Which cloud model is a collaborative effort where infrastructure is shared and jointly
accessed by several
organizations from a specific group?

A.

Hybrid

B.

Community

C.

Private

D.

Public

A switch with Dynamic ARP Inspection enabled has received a spoofed ARP response on
a trusted interface.
How does the switch behave in this situation?

A.

It forwards the packet after validation by using the MAC Binding Table.

B.

It drops the packet after validation by using the IP & MAC Binding Table

C.

It forwards the packet without validation

D.

It drops the packet without validation

What are two DDoS attack categories? (Choose two)

A.

sequential

B.

protocol

C.

database

D.

volume-based

E.

screen-based

An administrator is configuring a DHCP server to better secure their environment. They
need to be able to ratelimit the traffic and ensure that legitimate requests are not dropped.
How would this be accomplished?

A.

Set a trusted interface for the DHCP server

B.

Set the DHCP snooping bit to 1

C.

Add entries in the DHCP snooping database

D.

Enable ARP inspection for the required VLAN

In which cloud services model is the tenant responsible for virtual machine OS patching?

A.

IaaS

B.

UCaaS

C.

PaaS

D.

SaaS

In which two ways does Easy Connect help control network access when used with Cisco
TrustSec? (Choose two)

A.

It allows multiple security products to share information and work together to enhance
security posture in the network.

B.

It creates a dashboard in Cisco ISE that provides full visibility of all connected endpoints.

C.

It allows for the assignment of Security Group Tags and does not require 802.1x to be
configured on the switch or the endpoint.

D.

It integrates with third-party products to provide better visibility throughout the network.

E.

It allows for managed endpoints that authenticate to AD to be mapped to Security
Groups (PassiveID).

Refer to the exhibit.

An administrator is adding a new Cisco FTD device to their network and wants to manage it
with Cisco FMC.
The Cisco FTD is not behind a NAT device. Which command is needed to enable this on
the Cisco FTD?

A.

configure manager add DONTRESOLVE kregistration key>

B.

configure manager add <FMC IP address> <registration key> 16

C.

configure manager add DONTRESOLVE <registration key> FTD123

D.

configure manager add <FMC IP address> <registration key>

Which two deployment model configurations are supported for Cisco FTDv in AWS?
(Choose two)

A.

Cisco FTDv configured in routed mode and managed by an FMCv installed in AWS

B.

Cisco FTDv with one management interface and two traffic interfaces configured

C.

Cisco FTDv configured in routed mode and managed by a physical FMC appliance on premises

D.

Cisco FTDv with two management interfaces and one traffic interface configured

E.

Cisco FTDv configured in routed mode and IPv6 configured

What are the two types of managed Intercloud Fabric deployment models? (Choose two)

A.

Service Provider managed

B.

Public managed

C.

Hybrid managed

D.

User managed

E.

Enterprise managed