Which are two Cisco recommendations that demonstrates SDA? (Choose two.)
Correct Answer: C,E
Explanation Cisco SDA is a network architecture that uses software-defined networking (SDN) principles to create a secure, scalable, and consistent network fabric across wired, wireless, and VPN connections. It also provides visibility, control, and automation for the network devices, endpoints, users, and applications. To demonstrate SDA effectively, it is important to follow some best practices and recommendations, such as1: Focus on business benefits: SDA delivers business outcomes such as improved network performance, reduced operational costs, increased security, and simplified compliance. By focusing on the business benefits of SDA, you can align the solution with the customer's pain points and needs, and show how SDA can help them achieve their goals. Show the customer how to integrate ISE into DNA Center at the end of the demo: ISE is the policy engine that defines and enforces the network segmentation and access policies for SDA. DNA Center is the management platform that automates and orchestrates the SDA network. By showing the customer how to integrate ISE into DNA Center at the end of the demo, you can demonstrate the ease of use and configuration of SDA, and how the two products work together to provide a unified and secure network solution. The other three options are not helpful for demonstrating SDA: Use the CLI to perform as much of the configuration as possible: SDA is designed to simplify and automate the network configuration and management, and to reduce the reliance on manual and error-prone CLI commands. By using the CLI to perform as much of the configuration as possible, you can undermine the value proposition and differentiation of SDA, and make the solution appear complex and tedious. Keep the demo at a high level: SDA is a comprehensive and diverse solution that covers various use cases, such as device management, asset visibility, software-defined segmentation, software-defined access, guest and wireless access, BYOD, posture assessment, threat detection and response, and more2. By keeping the demo at a high level, you can miss the opportunity to showcase the features and capabilities of SDA that are relevant and applicable for the customer's use case, and to address their questions and concerns. Be sure you explain the major technologies such as VXLAN and LISP in depth: VXLAN and LISP are the underlying technologies that enable the data plane and control plane of SDA, respectively. They are responsible for encapsulating and forwarding the traffic, and mapping the endpoint identities and locations, within the SDA fabric3. While VXLAN and LISP are important for SDA, they are not the key selling points, because they are technical details that are abstracted and automated by SDA. By explaining the major technologies such as VXLAN and LISP in depth, you can confuse or bore the customer with technical details that are not essential for their use case, and divert their attention from the core benefits and features of SDA. References: Cisco Identity Services Engine (ISE) Use Cases2 : Software-Defined Access Overview Demo - Cisco1 : Software-Defined Access - Cisco4 : Cisco SD-Access Solution Design Guide (CVD) - Cisco3
Question 12
Which feature is supported on the Cisco vEdge platform?
Correct Answer: A
https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/segmentation/vEdge-20-x/segmentation-boo The Cisco vEdge platform supports IPv6 transport (WAN) as one of its features. This means that the vEdge routers can use IPv6 addresses to establish secure control and data plane connections with other vEdge routers over the WAN network. The vEdge routers can also use IPv6 addresses to communicate with the vSmart controllers and the vManage network management system. The vEdge routers can also support IPv6 routing protocols, such as OSPFv3 and BGP, to exchange IPv6 routes with other routers in the network12. The other features listed in the question are not supported on the Cisco vEdge platform. License enforcement is not applicable to the vEdge routers, as they do not require any license to operate. Reporting is a function of the vManage network management system, which collects and displays various statistics and analytics from the vEdge routers. Non-Ethernet interfaces, such as serial, T1/E1, or DSL, are not available on the vEdge routers, which only support Ethernet and cellular interfaces. Single sign-on and 2-factor authentication are not supportedon the vEdge routers, which use local or remote authentication methods, such as TACACS+, RADIUS, or LDAP3. References: 1: Cisco SD-WAN vEdge Routers Data Sheet 2: Cisco SD-WAN Configuration Guide, Release 20.3 3: Cisco SD-WAN Command Reference, Release 20.3
Question 13
Which is a function of the Proactive Insights feature of Cisco DNA Center Assurance?
Correct Answer: D
Explanation The Proactive Insights feature of Cisco DNA Center Assurance is a function that generates synthetic traffic to perform tests that raise awareness of potential network issues. This feature uses the Cisco DNA Center platform to create and schedule tests that simulate real user traffic and measure the network performance and user experience. The tests can be run on demand or periodically, and the results are displayed in the Cisco DNA Center dashboard. The Proactive Insights feature helps network administrators to proactively identify and troubleshoot network issues before they affect the end users12. References: Cisco DNA Center Assurance User Guide, Release 2.1.2 Understanding Cisco DNA Center Assurance!
Question 14
What is the easiest way to enable SD-Access for all your remote site after you have your campus SD-Access fabric up and running?
Correct Answer: C
Question 15
Which two options help you sell Cisco ISE? (Choose two.)
