350-601 · Question #373
350-601 Question #373: Real Exam Question with Answer & Explanation
The correct answer is D: data1# scope kvm. To meet security requirements for out-of-band management on Cisco UCS C-Series servers, including encryption, non-default ports, and private sessions, the configuration must be performed within the KVM scope.
Question
A company must security harden its Cisco UCS C-Series servers. The security policy requires all out-of-band management to meet these requirements: - It must encrypt all traffic - It must use nondefault ports - It must provide private administrative sessions. Which Cisco IMC configuration meets the requirements?
Options
- Adata1# scope sol
- Bdata1# scope cimc
- Cdata1# scope oob
- Ddata1# scope kvm
Explanation
To meet security requirements for out-of-band management on Cisco UCS C-Series servers, including encryption, non-default ports, and private sessions, the configuration must be performed within the KVM scope.
Common mistakes.
- A. scope sol configures Serial Over LAN, which is typically text-based and less feature-rich than KVM for full GUI interaction and might not inherently meet all encryption and private session requirements.
- B. scope cimc is the top-level scope for configuring the Cisco Integrated Management Controller (CIMC) itself, but it does not directly configure the KVM service settings for meeting the requirements.
- C. scope oob is not a standard or recognized command scope in Cisco IMC CLI for configuring specific out-of-band management features with all the specified requirements.
Concept tested. Cisco IMC KVM, out-of-band management security
Topics
Community Discussion
No community discussion yet for this question.