A security engineer is deploying a pair of primary and secondary Cisco FMC devices. The secondary must also receive updates from Cisco Talos. Which action achieves this goal?
A.
Manually import rule updates onto the secondary Cisco FMC device.
B.
Force failover for the secondary Cisco FMC to synchronize the rule updates from the primary.
C.
Configure the primary Cisco FMC so that the rules are updated.
D.
Configure the secondary Cisco FMC so that it receives updates from Cisco Talos.
Correct - If your deployment includes a high availability pair of Firepower Management Centers, import the update on the primary only. The secondary Firepower Management Center receives the rule update as part of the regular synchronization process.
https://www.cisco.com/c/en/us/td/docs/security/firepower/670/configuration/guide/fpmc-config-guide-v67/system_software_updates.html
I cannot see anywhere that Talos updates are replicated. The link below states:
"Although they share file policies and related configurations, Firepower Management Centers in a high availability pair share neither Cisco AMP cloud connections nor malware dispositions"
- so I believe this needs to be configured for the second FMC individually
https://www.cisco.com/c/en/us/td/docs/security/firepower/670/configuration/guide/fpmc-config-guide-v67/firepower_management_center_high_availability.html#id_21199
upvoted 1 times
...
This section is not available anymore. Please use the main Exam Page.300-710 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Mevijil
Highly Voted 10 months, 2 weeks agoNian
Most Recent 1 month, 3 weeks ago