300-420 Question #284: Real Exam Question with Answer & Explanation

Question

Which two statements describes Cisco SD-Access? (Choose two.)

Options

• Asoftware-defined segmentation and policy enforcement based on user identity and group
• Ban overlay for the wired infrastructure in which traffic is tunneled via a GRE tunnel to a mobility
• Can automated encryption/decryption engine for highly secured transport requirements
• Dprogrammable overlays enabling network virtualization across the campus
• Ea collection of tools and applications that are a combination of loose and tight coupling

Explanation

Cisco SD-Access implements software-defined segmentation and policy enforcement based on user identity and group, and it utilizes programmable overlays to enable network virtualization across the campus infrastructure.

Common mistakes.

• B. SD-Access uses VXLAN, not GRE tunnels, for its overlay encapsulation, and while it supports mobility, the statement's description of GRE tunneling to a mobility agent is not accurate for its core overlay mechanism.
• C. While SD-Access incorporates security features, it is not primarily defined as an 'automated encryption/decryption engine' for transport; its main focus is on segmentation and policy enforcement.
• E. This description is too vague and general; SD-Access is a tightly integrated architectural solution rather than a collection of loosely or tightly coupled tools and applications.

Concept tested. Cisco SD-Access core characteristics

Reference. https://www.cisco.com/c/en/us/solutions/enterprise-networks/software-defined-access/what-is-software-defined-access-sda.html

No community discussion yet for this question.