nerdexam
Exams101Questions#516
F5

101 · Question #516

101 Question #516: Real Exam Question with Answer & Explanation

The correct answer is C: certificate-based authentication. F5 BIG-IP devices use certificate-based authentication to establish device trust, enabling secure communication between members of a device group for configuration sync and failover.

Question

What is used to establish trust relationships between BIG-IP devices?

Options

  • Atrust ID
  • Bdevice group identification
  • Ccertificate-based authentication
  • Dunit IDs

Explanation

F5 BIG-IP devices use certificate-based authentication to establish device trust, enabling secure communication between members of a device group for configuration sync and failover.

Common mistakes.

  • A. Trust ID is not a standard F5 BIG-IP construct used to establish device trust - it does not exist as a named authentication mechanism in DSC.
  • B. Device group identification names and organizes devices after trust is established, but it does not itself provide the authentication mechanism needed to create the trust.
  • D. Unit IDs are used in VRRP-based high-availability configurations to differentiate traffic, not to authenticate or establish trust between BIG-IP peer devices.

Concept tested. F5 BIG-IP device trust establishment via certificates

Reference. https://techdocs.f5.com/en-us/bigip-14-1-0/big-ip-device-service-clustering-administration/establishing-device-trust.html

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 101 Practice