New 700-702 exam questions from PassLeader 700-702 dumps! Welcome to download the newest PassLeader 700-702 VCE and PDF dumps: https://www.passleader.com/700-702.html (60 Q&As)
P.S. Free 700-702 dumps are available on Google Drive shared by PassLeader: https://drive.google.com/open?id=0B-ob6L_QjGLpcDV3aXh6SE1JLW8
QUESTION 29
Which three statements about a controller based on imperative control are true? (Choose three.)
A. User intent is captured and implemented.
B. It uses abstract policies rather than a device-specific configuration.
C. Knowledge of infrastructure device specific commands is needed to deploy applications.
D. Set of device features is broad because scale is not an issue.
E. Device features are limited.
F. No knowledge of infrastructure device specific commands is needed to deploy applications.
G. User intent is difficult to capture and implement.
Answer: CEG
QUESTION 30
With which option can the Cisco Application Policy Infrastructure Controller be configured?
A. With the Cisco UCS Central interface
B. With the Cisco UCS Manager GUI
C. With the graphical user interface
D. With the CLI
E. With a service level agreement
Answer: D
QUESTION 31
What does the role-based access control in the Cisco Application Policy Infrastructure Controller provide?
A. RBAC is not supported in Cisco ACL
B. File system separation
C. The distributed database
D. Per-tenant admin separation
Answer: D
Explanation:
Cisco ACI permits tenant users to modify the parameters and configuration of the ACI fabric that they own and control. They can also read statistics and monitor faults and events for the entities (managed objects) that apply to them, such as endpoints, EPGs, and application profiles. Tenant users can perform configuration changes and read fault and event logs from the parts of the ACI fabric to which they have access. The ACI switch operating system includes a role-based access control (RBAC) feature that allows highly specific access for a given role. This RBAC feature scales to a maximum of 64 unique roles and 256 rules per role. The ACI APIs retrieve data directly from the object store. A core APIC internal data access control system provides multitenant isolation and prevents information privacy from being compromised across tenants. Read and write restrictions prevent any tenant from seeing any other tenant’s configuration, statistics, faults, or event data. Unless the administrator assigns permissions to do so, tenants are restricted from reading fabric configuration, policies, statistics, faults, and events. The APIC implements a two-level solution for access control:
– Traditional role-based control: This control level defines the types of objects that a user is authorized to access. Users are assigned roles (collections of privileges) that govern read-only or read-write access to managed objects in the system. All managed object classes have one or more privileges that are assigned to them.
– Domain-based control. This control level defines the domains in which a user is authorized to access objects.
QUESTION 32
A shard is a unit of data. How many copies does each Cisco APIC shard have including the active shard?
A. 5
B. 4
C. 3
D. 1
E. 2
Answer: B
Explanation:
http://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/unified-fabric/white-paper-c11-730021.html (effect of replication on reliablity)
New 700-702 exam questions from PassLeader 700-702 dumps! Welcome to download the newest PassLeader 700-702 VCE and PDF dumps: https://www.passleader.com/700-702.html (60 Q&As)
P.S. Free 700-702 dumps are available on Google Drive shared by PassLeader: https://drive.google.com/open?id=0B-ob6L_QjGLpcDV3aXh6SE1JLW8
