- (Exam Topic 5)
An engineer runs the command restore remote-manager-backup location 2.2.2.2 admin /Volume/home/admin FTD408566513.zip on a Cisco FMC. After connecting to the repository, the Cisco FTD device is unable to accept the backup file. What is the reason for this failure?

1. A. The backup file is not in .cfg format.
2. B. The wrong IP address is used.
3. C. The backup file extension was changed from .tar to .zip.
4. D. The directory location is incorrect.

Correct Answer: C
Reference: https://www.ciscolive.com/c/dam/r/ciscolive/emea/docs/2019/pdf/BRKSEC-3455.pdf

- (Exam Topic 5)
An engineer has been tasked with providing disaster recovery for an organization's primary Cisco FMC. What must be done on the primary and secondary Cisco FMCs to ensure that a copy of the original corporate policy is available if the primary Cisco FMC fails?

1. A. Restore the primary Cisco FMC backup configuration to the secondary Cisco FMC device when the primary device fails.
2. B. Configure high-availability in both the primary and secondary Cisco FMCs.
3. C. Connect the primary and secondary Cisco FMC devices with Category 6 cables of not more than 10 meters in length.
4. D. Place the active Cisco FMC device on the same trusted management network as the standby device.

Correct Answer: A

- (Exam Topic 3)
Which CLI command is used to generate firewall debug messages on a Cisco Firepower?

1. A. system support firewall-engine-debug
2. B. system support ssl-debug
3. C. system support platform
4. D. system support dump-table

Correct Answer: A
Reference: https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/212330-firepower- management-center-display-acc.html

- (Exam Topic 5)
A network engineer wants to add a third-party threat feed into the Cisco FMC for enhanced threat detection Which action should be taken to accomplish this goal?

1. A. Enable Threat Intelligence Director using STIX and TAXII
2. B. Enable Rapid Threat Containment using REST APIs
3. C. Enable Threat Intelligence Director using REST APIs
4. D. Enable Rapid Threat Containment using STIX and TAXII

Correct Answer: A

- (Exam Topic 3)
After deploying a network-monitoring tool to manage and monitor networking devices in your organization, you realize that you need to manually upload an MIB for the Cisco FMC. In which folder should you upload the MIB file?

1. A. /etc/sf/DCMIB.ALERT
2. B. /sf/etc/DCEALERT.MIB
3. C. /etc/sf/DCEALERT.MIB
4. D. system/etc/DCEALERT.MIB

Correct Answer: C
Reference: https://www.cisco.com/c/en/us/td/docs/security/firesight/541/firepower-module-user-guide/asa- firepower-module-user-guide-v541/Intrusion-External-Responses.pdf