Get Unlimited Contributor Access to the all ExamTopics Exams!
Take advantage of PDF Files for 1000+ Exams along with community discussions and pass IT Certification Exams Easily.
Correct option is C: “NGINX is an internal webserver that acts as a proxy webserver. It provides Transport Layer Security (TLS)-based HTTPS. RESTCONF request sent via HTTPS is first received by the NGINX proxy web serve,r and the request is transferred to the confd web server for further syntax/semantics check.”
hen a device boots up with the startup configuration, the nginxprocess will be running. NGINX is an internal webserver that acts as a proxy webserver. It provides Transport Layer Security (TLS)-based HTTPS. RESTCONF request sent via HTTPS is first received by the NGINX proxy web server, and the request is transferred to the confd web server for further syntax/semantics check. Reference: https://www.cisco.com/c/en/us/td/docs/ios- xml/ios/prog/configuration/168/b_168_programmability_cg/RESTCONF.html
C is valid
The question is specifically asking about TLS and not RESTCONF. It is a confusing question, but answer C does not specifically talk about the role of TLS in it all.
B and C are both correct.
However I will go with C, because the question asks "...to write configurations on network devices". I assume that if we are writing configurations, the TLS authentication using certificates is done, the devices are authenticated to each other and the symmetric session key was already generated. The two devices are no longer using certificates to authenticate, we are past that step. However, NGINX keeps acting as a proxy web server as long as the two devices keep communicating.
The correct answer is B. It requires certificates for authentication.
TLS (Transport Layer Security) is a cryptographic protocol that provides secure communication over a computer network. It is used to protect data in transit from being intercepted, tampered with, or forged.
TLS is required for authentication when using RESTCONF to write configurations on network devices. This is because RESTCONF is a secure protocol that uses HTTPS. HTTPS is HTTP over TLS, so it uses TLS to encrypt the communication between the client and the server.
The other answer choices are incorrect:
A. It is used for HTTP and HTTPS requests. TLS can be used for both HTTP and HTTPS requests, but it is required for HTTPS requests.
C. It is provided using NGINX acting as a proxy web server. NGINX can be used as a proxy web server for RESTCONF, but it is not required.
D. It is not supported on Cisco devices. TLS is supported on Cisco devices.
stupid question that is not covered at all in OCG. in fact, search of OCG shows no keyword reference to NGINX. However, process of elimination works:
A-no config tool is going to use http
B-certificates (assume client-based is what they are talking about) are typically optional
D-if it didnt apply to cisco, why is it on the test.
So it must be C. but still this is a stupid question. This link hints at nginx
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/prog/configuration/168/b_168_programmability_cg/RESTCONF.html
That definitely is a shortcoming of the book, since configure and verify NETCONF and RESTCONF is a test topic.
CBTNuggets covered how to enable both, and NGINX was a dependency.
man, OCG barely covers NETCONF and RESTCONF :D 2 pages and they require configuration skills on the exam. i know that i can use various resources but then why i paid $70 for the book where things like VRF, NETCONF/RESTCONF, basic python and much more is not covered?
NGINX is an internal webserver that acts as a proxy webserver. It provides Transport Layer Security (TLS)-based HTTPS. RESTCONF request sent via HTTPS is first received by the NGINX proxy web serve,r and the request is transferred to the confd web server for further syntax/semantics check.
C--- NGINX is an internal webserver that acts as a proxy webserver. It provides Transport Layer Security (TLS)-based HTTPS. RESTCONF request sent via HTTPS is first received by the NGINX proxy web serve,r and the request is transferred to the confd web server for further syntax/semantics check.
For C : NGINX is an internal webserver that acts as a proxy webserver. It provides Transport Layer Security (TLS)-based HTTPS. RESTCONF request sent via HTTPS is first received by the NGINX proxy web server and the request is transferred to the confd web server for further syntax/semantics check.
For B : To authenticate a client, a RESTCONF server MUST use TLS based client certificates (Section 7.4.6 of [RFC5246]), or MUST use any HTTP authentication scheme defined in the HTTP Authentication Scheme Registry (Section 5.1 in [RFC7235]). A server MAY also support the combination of both client certificates and an HTTP client authentication scheme, with the determination of how to process this combination left as an implementation decision.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
craaazymi
Highly Voted 3 years, 10 months agoSaqib79
Highly Voted 3 years, 11 months agoissa1430
Most Recent 1 day, 21 hours agoBeehurls
1 month, 1 week agoClaudiu1
2 months, 1 week agoNikosTsironis
6 months, 3 weeks agoDJ_Yahia
7 months agowr4net
11 months, 1 week agodanman32
9 months agoihateciscoreally
8 months, 1 week agoRaoul78
1 year agokg2280
1 year agoRose66
1 year, 3 months agodougj
1 year, 6 months ago[Removed]
1 year, 11 months agoGATUNO
2 years, 5 months agokthekillerc
2 years, 7 months ago68250test
2 years, 11 months agonetpeer
3 years agoiGlitch
1 year, 5 months ago