Koenig Course for Implementing Advanced Cisco ASA Security (SASAA v2.1) Quiz Questions and Answers

CDA is used for

Answer :
  • Identity based firwall

Object NAT is the type of

Answer :
  • Auto NAT

Which Cisco product is open, scalable, and built on IETF standards to allow multiple security products from Cisco and other vendors to share data and interoperate with each other?

Answer :
  • Platform Exchange Grid

Which Cisco platform ensures that machines that connect to organizational networks have the recommended antivirus definitions and patches to help prevent an organizational malware outbreak?

Answer :
  • Cisco ISE

A network administrator is configuring a switch to use Cisco ISE for 802.1X. An endpoint is failing authentication and is unable to access the network. Where should the administrator begin troubleshooting to verify the authentication details?

Answer :
  • RADIUS Live Logs

What command shows the smart default configuration for an IPsec profile?

Answer :
  • show crypto ipsec profile default

What is a prerequisite when integrating a Cisco ISE server and an AD domain?

Answer :
  • Synchronize the clocks of the Cisco ISE server and the AD server

Which threat involves software being used to gain unauthorized access to a computer system?

Answer :
  • virus

Due to a traffic storm on the network, two interfaces were error-disabled, and both interfaces sent SNMP traps. Which action must be taken to ensure that interfaces are put back into service?

Answer :
  • Ensure that interfaces are configured with the error-disable detection and recovery feature

Which term describes when the Cisco Firepower downloads threat intelligence updates from Cisco Talos?

Answer :
  • consumption