350-401 · Question #647
350-401 Question #647: Real Exam Question with Answer & Explanation
The correct answer is A: software-defined segmentation. Cisco SD-Access Architecture Explanation Cisco SD-Access introduces software-defined segmentation (A) through the use of Virtual Networks (VNs) and Scalable Group Tags (SGTs), which allow policy-based micro-segmentation without relying on traditional VLAN sprawl. It also adds ide
Question
Which two features does the Cisco SD-Access architecture add to a traditional campus network? (Choose two.)
Options
- Asoftware-defined segmentation
- Bprivate VLANs
- CSD-WAN
- Dmodular QoS
- Eidentity services
Explanation
Cisco SD-Access Architecture Explanation
Cisco SD-Access introduces software-defined segmentation (A) through the use of Virtual Networks (VNs) and Scalable Group Tags (SGTs), which allow policy-based micro-segmentation without relying on traditional VLAN sprawl. It also adds identity services (E) via integration with Cisco Identity Services Engine (ISE), enabling role-based access control where network policies follow the user or device regardless of physical location. Private VLANs (B) are a legacy Layer 2 feature that exists in traditional campus networks, not something SD-Access introduces. SD-WAN (C) is a separate Cisco solution (Viptela/SD-WAN) focused on WAN connectivity, not campus access, and modular QoS (D) has been a standard IOS feature in traditional networks long before SD-Access existed.
💡 Memory Tip: Think of SD-Access as transforming the campus with two key "smarts" - who you are (identity) and where you're allowed to go (segmentation). If a feature existed in traditional campus networks before SD-Access, it's likely a distractor!
Topics
Community Discussion
No community discussion yet for this question.