ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-710 All Questions

View all questions & answers for the 300-710 exam
Go to Exam

Exam 300-710 topic 1 question 172 discussion

Actual exam question from Cisco's 300-710
Question #: 172
Topic #: 1
[All 300-710 Questions]

An engineer is creating an URL object on Cisco FMC. How must it be configured so that the object will match for HTTPS traffic in an access control policy?

  • A. Specify the protocol to match (HTTP or HTTPS).
  • B. Use the FQDN including the subdomain for the website.
  • C. Use the subject common name from the website certificate.
  • D. Define the path to the individual webpage that uses HTTPS.
Show Suggested Answer Hide Answer
Suggested Answer: C 🗳️
by Bbb78 at April 5, 2023, 7:46 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Stevens0103
8 months, 2 weeks ago
Selected Answer: C
The subject common name from the website certificate is used to match HTTPS traffic without performing SSL inspection. This allows the system to identify and match the URLs without decrypting the traffic, hence avoiding SSL inspection.
upvoted 2 times
...
bassfunk
1 year, 2 months ago
Selected Answer: C
The answer is c.
upvoted 1 times
...
SegaMasterSystemAdmin
1 year, 4 months ago
Selected Answer: C
You cannot specify the protocol whether it's HTTP or HTTPS when creating an URL object, you can just add the actual URL so if unsure of the URL you can obtain this from the CN portion of the web cert.
upvoted 1 times
...
THEODORABLE
1 year, 5 months ago
C; the protocol designation in a URL object is ignored. it applies to both HTTP & HTTPS
upvoted 2 times
...
THEODORABLE
1 year, 5 months ago
C is correct-- look at he document n the first quarter of the text-- https://www.cisco.com/c/en/us/td/docs/security/firepower/630/configuration/guide/fpmc-config-guide-v63/reusable_objects.html?bookSearch=true#ID-2243-00000414
upvoted 3 times
...
Initial14
1 year, 6 months ago
Selected Answer: A
A. You cant match on CN in ACl, you can in SSL
upvoted 1 times
jewell2j
1 year, 3 months ago
If you plan to use a URL object to match HTTPS traffic in an access control rule, create the object using the subject common name in the public key certificate used to encrypt the traffic. Also, the system disregards subdomains within the subject common name, so do not include subdomain information. For example, use example.com rather than www.example.com.
upvoted 1 times
...
...
Bbb78
1 year, 6 months ago
Selected Answer: A
This makes little sence. To block URL in ACP - you must create an object and add a line to ACP, where you can select protocol - HTTPS,HTTP, etc.
upvoted 2 times
Nian
6 days, 15 hours ago
Wrong - Protocol is not specified in URL objects. Question asks for how the URL object is configured - not the access policy
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago