- (Exam Topic 1)
On Cisco Firepower Management Center, which policy is used to collect health modules alerts from managed devices?

1. A. health policy
2. B. system policy
3. C. correlation policy
4. D. access control policy
5. E. health awareness policy

Correct Answer: A

- (Exam Topic 1)
An engineer must force an endpoint to re-authenticate an already authenticated session without disrupting the endpoint to apply a new or updated policy from ISE. Which CoA type achieves this goal?

1. A. Port Bounce
2. B. CoA Terminate
3. C. CoA Reauth
4. D. CoA Session Query

Correct Answer: C

- (Exam Topic 1)
What must be used to share data between multiple security products?

1. A. Cisco Rapid Threat Containment
2. B. Cisco Platform Exchange Grid
3. C. Cisco Advanced Malware Protection
4. D. Cisco Stealthwatch Cloud

Correct Answer: B

- (Exam Topic 2)
For Cisco IOS PKI, which two types of Servers are used as a distribution point for CRLs? (Choose two)

1. A. SDP
2. B. LDAP
3. C. subordinate CA
4. D. SCP
5. E. HTTP

Correct Answer: BE
Reference:
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_conn_pki/configuration/15-mt/sec-pki-15-mtbook/sec-pk

- (Exam Topic 1)
Refer to the exhibit.

A network administrator configured a site-to-site VPN tunnel between two Cisco IOS routers, and hosts are unable to communicate between two sites of VPN. The network administrator runs the debug crypto isakmp sa command to track VPN status. What is the problem according to this command output?

1. A. hashing algorithm mismatch
2. B. encryption algorithm mismatch
3. C. authentication key mismatch
4. D. interesting traffic was not applied

Correct Answer: C