Exam 350-701 topic 1 question 128 discussion

I think the correct answer is C, as this is stated in the Official Cert Guide: "When you add a managed device to the Cisco FMC, you must provide an IP addresses of the managed device along with a registration key for authentication. The Cisco FMC and the managed device use the registration key and a NAT ID (instead of IP addresses in the case that the device is behind NAT) to authenticate and authorize for initial registration." But in this case is not behind a NAT, so....C

The anwser is C. A is wrong (would need DONTRESOLVE to work in case on NAT device between FTD and FMC) B is wrong (would need 16 instead of FTD123, again in case on NAT device between FTD and FMC) C is correct:) D is wrong, DONTRESOLVE, KEY & NAT_ID is needed (again in case on NAT device between FTD and FMC)

If you used a NAT ID during device setup, expand in the Advanced section and enter the same NAT ID in the Unique NAT ID field."

FMC 6.6 guide: "If you used a NAT ID during device setup, expand in the Advanced section and enter the same NAT ID in the Unique NAT ID field."

A is correct, I worked with FTDs for a long time, even if there is no Nat device in between, if you use NAT ID on one side then you have to use it on the other side too, the exhibit has nat ID 16 on it so the FTD's command has to match it.

Answer is C

https://w_w_w.youtube.com/watch?v=v_uZ9GbICBk

https://i.imgur.com/LdBgjED.png https://www.youtube.com/watch?v=v_uZ9GbICBk

https://www.youtube.com/watch?v=v_uZ9GbICBk https://i.imgur.com/LdBgjED.png

C is correct answer. You don't need DONOTRESOLVE unless you are behind a NAT device. You need the NATID number.

Syntax configure manager add {hostname | IPv4_address | IPv6_address | DONTRESOLVE} regkey [nat_id] where {hostname | IPv4_address | IPv6_address | DONTRESOLVE} specifies the DNS host name or IP address (IPv4 or IPv6) of the Firepower Management Center that manages this device. If the Firepower Management Center is not directly addressable, use DONTRESOLVE. If you useDONTRESOLVE, nat_id is required. regkey is the unique alphanumeric registration key required to register a device to the Firepower Management Center. nat_id is an optional alphanumeric string used during the registration process between the Firepower Management Center and the device. It is required if the hostname is set to DONTRESOLVE.

Firepower Management Center Configuration Guide, Version 6.1 - Device Management Basics [Cisco Firepower Management Center] - Cisco

100%, did it myself

see Luc and all others

C is the correct answer ,..unless your FMC's IP address is "DONTRESOLVE" which makes zero sense at all and the questions says it is not behind NAT

The answer is most probably C although it's not clear whe NAT ID is specified in FMC options. Regarding A: IP address + NAT ID can be specified on FTD in 2 cases: when FTD itself is behind NAT or when it's not but this is just another option to register device. But in both those cases IP of the device should be blank in FMC. This is explained here: https://www.cisco.com/c/en/us/td/docs/security/firepower/misc/fmc-ftd-mgmt-nw/fmc-ftd-mgmt-nw.html#ID-2242-00000191

Funny thing is that the question says "F_T_D is not behind NAT", although DONTRESOLVE should be used when F_M_C is NATted. But anyway DONTRESOLVE must be used with nat_id, and there is no such answer here.