nerdexam
Exams300-415Questions#446
Cisco

300-415 · Question #446

300-415 Question #446: Real Exam Question with Answer & Explanation

The correct answer is A: SD-WAN Manager as CA. In a Cisco Catalyst SD-WAN environment, the SD-WAN Manager (vManage) serves as the Certificate Authority (CA) for generating certificates, including those used by a TLS proxy.

Security and Quality of Service

Question

Which Certificate of Authority (CA) option is used when configuring a TLS proxy in the Cisco Catalyst SD-WAN environment?

Options

  • ASD-WAN Manager as CA
  • BSD-WAN Controller as CA
  • CvController as CA
  • DWAN Edge as CA

Explanation

In a Cisco Catalyst SD-WAN environment, the SD-WAN Manager (vManage) serves as the Certificate Authority (CA) for generating certificates, including those used by a TLS proxy.

Common mistakes.

  • B. The SD-WAN Controller (vSmart) is responsible for the control plane and routing policies, not for acting as a Certificate Authority.
  • C. "vController" is synonymous with vSmart (SD-WAN Controller), which does not serve as a Certificate Authority.
  • D. A WAN Edge device is a data plane component that processes traffic and enforces policies, but it does not function as a Certificate Authority within the SD-WAN fabric.

Concept tested. Cisco SD-WAN Certificate Authority role

Reference. https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/sdwan-xe-gs-cr-book/sdwan-security-features.html

Topics

#TLS Proxy#Certificate Authority#SD-WAN Manager#SD-WAN Security

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 300-415 Practice