Cisco
300-730 · Question #153
300-730 Question #153: Real Exam Question with Answer & Explanation
Sign in or unlock 300-730 to reveal the answer and full explanation for question #153. The question stem and answer options stay visible for context.
Question
An engineer is requesting an SSL certificate for a VPN load-balancing cluster in which two Cisco ASAs provide clientless SSL VPN access. The FQDN that users will enter to access the clientless VPN is asa.example.com, and users will be redirected to either asa1.example.com or asa2.example.com. The cluster FQDN and individual Cisco ASAs FQDNs resolve to IP addresses 192.168.0.1, 192.168.0.2, and 192.168.0.3 respectively. The issued certificate must be able to be used to validate the identity of either ASA in the cluster without returning any certificate validation errors. Which fields must be included in the certificate to meet these requirements?
Options
- ACN=*.example.com, SAN=asa.example.com
- BCN=192.168.0.1, SAN=asa1.example.com, asa2.example.com
- CCN=asa.example.com, SAN=asa.example.com, asa1.example.com, asa2.example.com
- DCN=192.168.0.1, SAN=192.168.0.1, 192.168.0.2, 192.168.0.3
Unlock 300-730 to see the answer
You've previewed enough free 300-730 questions. Unlock 300-730 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.