- (Exam Topic 1)
An engineer must force an endpoint to re-authenticate an already authenticated session without disrupting the endpoint to apply a new or updated policy from ISE. Which CoA type achieves this goal?

1. A. Port Bounce
2. B. CoA Terminate
3. C. CoA Reauth
4. D. CoA Session Query

Correct Answer: C

- (Exam Topic 1)
Which two request of REST API are valid on the Cisco ASA Platform? (Choose two)

1. A. put
2. B. options
3. C. get
4. D. push
5. E. connect

Correct Answer: AC
The ASA REST API gives you programmatic access to managing individual ASAs through a Representational State Transfer (REST) API. The API allows external clients to perform CRUD (Create, Read, Update, Delete) operations on ASA resources; it is based on the HTTPS protocol and REST methodology.All API requests are sent over HTTPS to the ASA, and a response is returned.Request StructureAvailable request methods are:GET – Retrieves data from the specified object.PUT – Adds the supplied information to the specified object; returns a 404 Resource Not Found error if the object does not exist.POST – Creates the object with the supplied information.DELETE – Deletes the specified object
Reference: https://www.cisco.com/c/en/us/td/docs/security/asa/api/qsg-asa-api.html

- (Exam Topic 3)
Which feature is leveraged by advanced antimalware capabilities to be an effective endpomt protection platform?

1. A. big data
2. B. storm centers
3. C. sandboxing
4. D. blocklisting

Correct Answer: C

- (Exam Topic 3)
What is a benefit of using GET VPN over FlexVPN within a VPN deployment?

1. A. GET VPN supports Remote Access VPNs
2. B. GET VPN natively supports MPLS and private IP networks
3. C. GET VPN uses multiple security associations for connections
4. D. GET VPN interoperates with non-Cisco devices

Correct Answer: B