NEW QUESTION 1
Which two remediation options are available when Cisco FMC is integrated with Cisco ISE? (Choose two.)

• A. dynamic null route configured
• B. DHCP pool disablement
• C. quarantine
• D. port shutdown
• E. host shutdown

Answer: CD

NEW QUESTION 2
Within Cisco Firepower Management Center, where does a user add or modify widgets?

• A. dashboard
• B. reporting
• C. context explorer
• D. summary tool

Answer: A

NEW QUESTION 3
DRAG DROP
Drag and drop the steps to restore an automatic device registration failure on the standby Cisco FMC from the left into the correct order on the right. Not all options are used.
Select and Place:

• A. Mastered
• B. Not Mastered

Answer: A

NEW QUESTION 4
In a Cisco AMP for Networks deployment, which disposition is returned if the cloud cannot be reached?

• A. unavailable
• B. unknown
• C. clean
• D. disconnected

Answer: A

NEW QUESTION 5
When creating a report template, how can the results be limited to show only the activity of a specific subnet?

• A. Create a custom search in Firepower Management Center and select it in each section of the report.
• B. Add an Input Parameter in the Advanced Settings of the report, and set the type to Network/IP.
• C. Add a Table View section to the report with the Search field defined as the network in CIDR format.
• D. Select IP Address as the X-Axis in each section of the report.

Answer: B

NEW QUESTION 6
What is a behavior of a Cisco FMC database purge?

• A. User login and history data are removed from the database if the User Activity check box is selected.
• B. Data can be recovered from the device.
• C. The appropriate process is restarted.
• D. The specified data is removed from Cisco FMC and kept for two weeks.

Answer: C

NEW QUESTION 7
In which two ways do access control policies operate on a Cisco Firepower system? (Choose two.)

• A. Traffic inspection can be interrupted temporarily when configuration changes are deployed.
• B. The system performs intrusion inspection followed by file inspection.
• C. They can block traffic based on Security Intelligence data.
• D. File policies use an associated variable set to perform intrusion prevention.
• E. The system performs a preliminary inspection on trusted traffic to validate that it matches the trusted parameters.

Answer: AC

NEW QUESTION 8
Which CLI command is used to generate firewall debug messages on a Cisco Firepower?

• A. system support firewall-engine-debug
• B. system support ssl-debug
• C. system support platform
• D. system support dump-table

Answer: A

NEW QUESTION 9
Which action should be taken after editing an object that is used inside an access control policy?

• A. Delete the existing object in use.
• B. Refresh the Cisco FMC GUI for the access control policy.
• C. Redeploy the updated configuration.
• D. Create another rule using a different object name.

Answer: C

NEW QUESTION 10
Which two dynamic routing protocols are supported in Firepower Threat Defense without using FlexConfig? (Choose two.)

• A. EIGRP
• B. OSPF
• C. static routing
• D. IS-IS
• E. BGP

Answer: CE

NEW QUESTION 11
Which interface type allows packets to be dropped?

• A. passive
• B. inline
• C. ERSPAN
• D. TAP

Answer: B

NEW QUESTION 12
Which action should you take when Cisco Threat Response notifies you that AMP has identified a file as malware?

• A. Add the malicious file to the block list.
• B. Send a snapshot to Cisco for technical support.
• C. Forward the result of the investigation to an external threat-analysis engine.
• D. Wait for Cisco Threat Response to automatically block the malware.

Answer: A

NEW QUESTION 13
Which two routing options are valid with Cisco Firepower Threat Defense? (Choose two.)

• A. BGPv6
• B. ECMP with up to three equal cost paths across multiple interfaces
• C. ECMP with up to three equal cost paths across a single interface
• D. BGPv4 in transparent firewall mode
• E. BGPv4 with nonstop forwarding

Answer: AC

NEW QUESTION 14
What is a functionality of port objects in Cisco FMC?

• A. to mix transport protocols when setting both source and destination port conditions in a rule
• B. to represent protocols other than TCP, UDP, and ICMP
• C. to represent all protocols in the same way
• D. to add any protocol other than TCP or UDP for source port conditions in access control rules.

Answer: B

NEW QUESTION 15
What is the maximum SHA level of filtering that Threat Intelligence Director supports?

• A. SHA-1024
• B. SHA-4096
• C. SHA-512
• D. SHA-256

Answer: D

NEW QUESTION 16
Which command must be run to generate troubleshooting files on an FTD?

• A. system support view-files
• B. sudo sf_troubleshoot.pl
• C. system generate-troubleshoot all
• D. show tech-support

Answer: B

NEW QUESTION 17
What is the benefit of selecting the trace option for packet capture?

• A. The option indicates whether the packet was dropped or successful.
• B. The option indicated whether the destination host responds through a different path.
• C. The option limits the number of packets that are captured.
• D. The option captures details of each packet.

Answer: C

NEW QUESTION 18
Which Cisco Advanced Malware Protection for Endpoints policy is used only for monitoring endpoint actively?

• A. Windows domain controller
• B. audit
• C. triage
• D. protection

Answer: B

NEW QUESTION 19
Which report template field format is available in Cisco FMC?

• A. box lever chart
• B. arrow chart
• C. bar chart
• D. benchmark chart

Answer: C

NEW QUESTION 20
Which two OSPF routing features are configured in Cisco FMC and propagated to Cisco FTD? (Choose two.)

• A. OSPFv2 with IPv6 capabilities
• B. virtual links
• C. SHA authentication to OSPF packets
• D. area boundary router type 1 LSA filtering
• E. MD5 authentication to OSPF packets

Answer: BD

NEW QUESTION 21
Which two types of objects are reusable and supported by Cisco FMC? (Choose two.)

• A. dynamic key mapping objects that help link HTTP and HTTPS GET requests to Layer 7 application protocols.
• B. reputation-based objects that represent Security Intelligence feeds and lists, application filters based on category and reputation, and file lists
• C. network-based objects that represent IP address and networks, port/protocols pairs, VLAN tags, security zones, and origin/destination country
• D. network-based objects that represent FQDN mappings and networks, port/protocol pairs, VXLAN tags, security zones and origin/destination country
• E. reputation-based objects, such as URL categories

Answer: BC

NEW QUESTION 22
......