Braindump2go Guarantee All Exams 100% Pass One Time!

 Vendor: Cisco

 Exam Code: 300-620

 Exam Name: Implementing Cisco Application Centric Infrastructure

 New Updated Questions from Braindump2go (Updated in September/2020)

Visit Braindump2go and Download Full Version 300-620 Exam Dumps

QUESTION 93
Using EPG extension, an engineer has moved all endpoints in a VLAN into an ACI fabric. When he moves the default gateway from traditional switches into the
fabric, he suddenly loses all connectivity to the endpoints from outside the fabric.
Which of the following are possible reasons this has taken place? (Choose three.)

A. The Layer 2 connection between ACI switches and non-ACI switches has been disconnected.
B. The bridge domain does not have an associated L3Out configured.
C. The subnet Scope parameter on the BD needs to be set to Advertised Externally.
D. No contracts have been associated with the EPG.

Answer: BCD

QUESTION 94
A user has been assigned to a security domain called Production and a domain called Production. The security domain has been mapped to two tenants, named
Prod1 and Prod2.
In the security domain assignment for the user, the tenant-admin role was selected, and it has access privilege type Write.
Which the following items may the user still be unable to do?

A. Create bridge domains, application profiles, and EPGs in the Prod1 tenant
B. View basic objects within the common tenant
C. Map an EPG in the Prod2 tenant to a port on a leaf
D. Create service graphs in the Prod2 tenant

Answer: C

QUESTION 95
A user needs full read-only visibility into an ACI fabric. Which predefined security domain can be used to enable such visibility?

A. common
B. all
C. infra
D. fabric

Answer: B

QUESTION 96
Out of the following switches, which are spine platforms that support ACI Multi-Site? (Choose two.)

A. Nexus 93180YC-EX
B. Nexus 9364C
C. Nexus 9736C-FX line card
D. Nexus 9396PX

Answer: BC

QUESTION 97
In-band is currently configured and used to manage the Cisco ACI fabric. The requirement is for leaf and spine switches to use out-of-band management for NTP
protocol.
Which action accomplishes this goal?

A. Select Out-of-Band as Management EPG in the default DateTimePolicy.

B. Create an Override Policy with NTP Out-of-Band for leaf and spine switches.
C. Change the interface used for APIC external connectivity to ooband.
D. Add a new filter to the utilized Out-of-Band-Contract to allow NTP protocol.

Answer: A

QUESTION 98
An administrator must migrate the vSphere Management VMkernel of all ESXi hosts in the production cluster from the standard default virtual switch to a VDS that
is integrated with APIC in a VMM domain.
Which action must be completed in this scenario?

A. The Management VMkernel EPG resolution must be set to Pre-Provosion.

B. The administrator must create an in-band VMM Management EPG before performing the
migration.

300-620 Exam Dumps 300-620 Exam Questions 300-620 PDF Dumps 300-620 VCE Dumps

https://www.braindump2go.com/300-620.html
 Braindump2go Guarantee All Exams 100% Pass One Time!
C. The administrator must set the Management VMkernel BD resolution immediacy to On-Demand.
D. The VMkernel Management BD must be located under the Management Tenant.

Answer: A

QUESTION 99
A customer implements RBAC on a Cisco APIC using a Windows RADIUS server that is configured with network control policies. The APIC is as follows:
- Tenant = TenantX
- Security Domain = Tenantx-SD
- User = X
The customer requires User X to have access to TenantX only, without any extra privilege in the Cisco ACI fabric domain.
Which Cisco AV pair must be implemented on the RADIUS server to meet these requirement?

A. shell:domains = TenantX-SD/fabric-admin/,common//read-all
B. shell:domains = TenantX-SD/tenant-admin
C. shell:domains = TenantX-SD/tenant-ext-admin/,common//read-all
D. shell:domains = TenantX-SD/tenant-admin/,common//read-all

Answer: C

QUESTION 100
A network engineer must backup the PRODUCTION tenant. The configuration backup should be stored on the APIC using a markup language and contain all
secure information. Which export policy must be used to meet these requirement?

A.

B.

300-620 Exam Dumps 300-620 Exam Questions 300-620 PDF Dumps 300-620 VCE Dumps

https://www.braindump2go.com/300-620.html
 Braindump2go Guarantee All Exams 100% Pass One Time!
C.

D.

Answer: D

QUESTION 101
An engineer must create a backup of the Cisco ACI fabric for disaster recovery purposes. The backup must be transferred over a secure and encrypted transport.
The backup file must contain all user and password related information. The engineer also wants to process and confirm the backup file validity by using a Python
script. This requires the data structure to have a format similar to a Python dictionary. Which configuration set must be used to meet these requirements?

A. Under the Create Remote location settings, select Protocol: FTP

Under the Export policy, select
- Format: XML
- Modify Global AES Encryption Settings: Enabled
B. Under the Create Remote location settings, select Protocol: FTP
Under the Export policy, select
- Format: XML
- Modify Global AES Encryption Settings: Disabled
C. Under the Create Remote location settings, select Protocol: SCP
Under the Export policy, select
- Format: JSON
- Modify Global AES Encryption Settings: Disabled
D. Under the Create Remote location settings, select Protocol: SCP
Under the Export policy, select
- Format: JSON
- Modify Global AES Encryption Settings: Enabled

Answer: D

QUESTION 102
The Application team reports that a previously existing port group has disappeared from vCenter. An engineer confirms that the VM domain association for the EPG
is no longer present. Which action determines which user is responsible for the change?

A. Check the EPG audit logs for the "deletion" action and compare the affected object and user.
B. Evaluate the potential faults that are raised for that EPG.
C. Examine the health score and drill down to an object that affects the EPG combined score.
D. Inspect the server logs to see who was logging in to the APIC during the last few hours.

Answer: A

QUESTION 103
An application team tells the Cisco ACI network administrator that it wants to monitor the statistics of the unicast and BUM traffic that are seen in a certain EPG.
Which statement describes the collection statistics?

A. All EPGs in the Cisco ACI tenant object must be enabled for statistics to be collected.
B. Cisco ACI does not capture statistics at the EPG level. Only statistics that pass through ACI
contracts can be monitored.

300-620 Exam Dumps 300-620 Exam Questions 300-620 PDF Dumps 300-620 VCE Dumps

https://www.braindump2go.com/300-620.html
 Braindump2go Guarantee All Exams 100% Pass One Time!
C. EPG statistics can be collected only for VMM domains. If a physical domain exists, statistics are
not collected.
D. The collection of statistics is enabled on the EPG level by enabling the statistics for unicast and
BUM traffic.

Answer: A

QUESTION 104
In the context of ACI Multi-Site, when is the information of an endpoint (MAC/IP) that belongs to site 1 advertised to site 2 using the EVPN control plane?

A. Endpoint information is not exchanged across sites unless COOP protocol is used.
B. Endpoint information is not exchanged across sites unless a policy is configured to allow
communication across sites.
C. Endpoint information is exchanged across sites as soon as the endpoint is discovered in one site.
D. Endpoint information is exchanged across sites when the endpoints are discovered in both sites.

Answer: A
Explanation:
https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/white-paper-c11-
739609.html#CiscoACIMultiSiteoverlaydataplane

QUESTION 105
Which statement regarding ACI Multi-Pod and TEP pool is true?

A. The IP addresses used in the IPN network can overlap TEP pool of the APIC.
B. A different TEP pool must be assigned to each Pod.
C. The Pod1 TEP pool must be split and a portion of the TEP pool allocated to each Pod.
D. The same TEP pool is used in all Pods.

Answer: B
Explanation:
https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric-infrastructure/white-paper-c11-739714.html

QUESTION 106
Which two statements regarding ACI Multi-Site are true? (Choose two.)

A. The Multi-Site orchestrator must be directly attached to one ACI leaf.

B. Routers in the Inter-Site network must run OSPF, DHCP relay, and MP-BGP.
C. ACI Multi-Site is a solution that supports a dedicated APIC cluster per site.
D. ACI Multi-Site is a solution that allows one APIC cluster to manage multiple ACI sites.
E. The Inter-Site network routers should run OSPF to establish peering with the spines.

Answer: DE

300-620 Exam Dumps 300-620 Exam Questions 300-620 PDF Dumps 300-620 VCE Dumps

https://www.braindump2go.com/300-620.html