Cisco 350-901 Exam Dumps

A developer is deploying an application to automate the configuration and management ofOsco network files and routers The application must use REST API interface lo achieveprogrammability. The security team mandates that the network must be protected againstDDoS attacks What mitigates the attacks without impacting genuine requests?

A. API rate limiting at the application layer
B. IP address filtering at the application layer
C. traffic routing on the network perimeter
D. firewall on the network perimeter

Answer: D

When an application is designed that requires high availability, what is a reason to use across-region cloud?

A. Provide disaster recovery protection
B. Protect from a single component failure
C. Minimize costs
D. Account for failure in another zone

Answer: A

An engineer is developing a Docket container for an application in Python For securityreasons the application needs to be accessible on port 5001 only Which line should beadded to the dockerfile m order to accomplish this?

A. ENTRYPOINT 5001
B. PORT SRC 5001
C. ADO PORT 5001
D. EXPOSE 5001

Answer: D

A custom dashboard of the network health must be created by using Cisco DNA CenterAPIs An existing dashboard is a RESTful API that receives data from Cisco DNA Center asa new metric every time the network health information is sent from the script to thedashboard Which set of requests creates the custom dashboard?

A. PUT request to Cisco DNA Center to obtain the network health information and then aPOST request to the dashboard to publish the new metric
B. POST request to Cisco DNA Center to obtain the network health information and then aGET request to the dashboard to publish the new metric
C. GET request to Cisco DNA Center to obtain the network health information and then aPUT request to the dashboard to publish the new metric
D. GET request to Cisco DNA Center to obtain the network health information and then aPOST request to the dashboard to publish the new metric

Answer: D

An application has these characteristics• provide one service or function• distributed database• API gateway• central repository for code• configuration database• uses session managementWhich two design approaches contribute to the scalability of the application'? (Choose two)

A. built to scale based on a star topology
B. modular design iteration
C. session management in a stateless architecture
D. planned before the first device is deployed
E. distributed computing with tightly coupled components

Answer: A,C

A web application is being developed to provide online sales to a retailer. The customerswill need to use their username and passwords to login into then profile and complete theirorder For this reason the application must store user passwords Which approach ensuresthat an attacker wifi need to crack the passwords one at a time?

A. Apply the peppering technique
B. Store the passwords by using asymmetric encryption
C. Apply the salting technique
D. Store the passwords by using symmetric encryption

Answer: C

How is AppDynamics used to instrument an application?

A. Provides visibility into the transaction logs that can be correlated to specific businesstransaction requests
B. Enables instrumenting a backend web server (or packet installation by using anAppDynamics agent
C. Retrieves a significant amount of information from the perspective of the databaseserver by using application monitoring
D. Monitors traffic flows by using an AppDynamics agent installed on a networkinfrastructure device

Answer: A

Given an application that implements a basic search function as Well as a video uploadfunction , which two load-balancing approachesoptimize the application's user experience? (Choose two.)

A. Video upload requests should be routed to the endpoint using an intermediate hop.
B. Video upload requests should be routed to the endpoint with highest data throughput.
C. Video upload requests should be routed to the endpoint with lowest round-trip latency.
D. Search requests should be routed to the endpoint with lowest round-trip latency.
E. Search requests should be routed to the endpoint with highest data throughput.

Answer: B,D

Which two encryption principles should be applied to secure APIs? (Choose two.)

A. Use temporary files as part of the encryption and decryption process
B. Transmit authorization information by using digitally signed payloads 
C. Use encrypted connections to protect data n transit 
D. Reuse source code that contain existing UUIDs 
E. Embed keys in code to simplify the decryption process

Answer: B,C

What is a benefit of using model-driven telemetry?

A. enables operational data to be collected at higher rates and a higher scale 
B. enables the application to pull data faster than pushing the data 
C. reduces the load on the server by enabling the client to pull data
D. simplifies the development of clients by using a single encoding standard for the data

Answer: D

An architect must optimize traffic that targets a popular API endpoint Currently, theapplication downloads a large file hourly, but often the file is unchanged and the downloadcauses unnecessary load and delays Which cURL command must be used to determinethe last modified date of the file and to optimize the API usage?

A. curl GET request
B. curl HEAD request
C. curl --silent request
D. curl -H 'Cache-Control: no-cache' request

Answer: B

A developer deploys a web application in a local data center that is now experiencing hightraffic load from users accessing data through REST API calls. Which approach enhancesthe responsiveness and performance of the API?

A. Use HTTP POST or other non-read methods for read requests when possible
B. Ensure that all read requests are clearly identified by the PUT method
C. Configure API payload to return errors in HTTP 200 responses
D. Use HTTP standard authorization header to submit authentication credentials

Answer: D

Which scenario is an example of the pseudonymization of sensitive data that meets GDPRrequirements? 

A. encrypting sensitive data at rest by using native cloud services and data in transit byusing SSL/TLS transport
B. implementing XFowarded For at the frontend of a web app to enable the source IPaddresses of headers to change
C. leveraging an application load balancer at the frontend of a web app for SSL/TLSdecryption to inspect data in transit 
D. separating the sensitive data into its own dedicated secured data store and using tokensin its place

Answer: A

Which command is used 10 enable application hosting on a Cisco IOS XE device?

A. iox
B. iox-service
C. application -honing
D. app- hosting

Answer: A

What is the result of a successful OAuth2 authorization grant flow?

A. The user has the application rights that correspond to the user's role within theapplication's database
B. The application is provided with a token that allows actions on services on the user'sbehalf
C. The user has administrative rights to the application's backend services
D. The third-party service is provided with a token that allows actions to be performed

Answer: B

Which security approach should be used for developing a REST API? 

A. Use custom security relevant HTTP response codes
B. Utilise TLS for end to end encryption 
C. Add an API key to each URL string
D. Utilize CORS headers

Answer: B

A Cisco Catalyst 9000 switch has guest shell enabled. Which Linux command installs athird-party application?

A. yum Install <package-name>
B. apt-get install <package-name>
C. zypper install <package-name>
D. dnf install <package-name>

Answer: A

A timeframe custom dashboard must be developed to present data collected from CiscoMeraki. The dashboard must include a wireless health alert count. What needs to be builtas a prerequisite?

A. A publicly available HTTP server to receive Meraki Webhooks from the MerakiDashboard API 
B. A publicly available HTTP server to receive Meraki Webhooks from the Meraki ScanningAPI 
C. A daemon to consume the Wireless Health endpoint of the Meraki Scanning API
D. A daemon to consume the Wireless Health endpoint of the Meraki Dashboard API

Answer: A

A developer wants to automate virtual infrastructure to provision and manage it. Thesystem will be implemented m large-scale deployment while offering redundancy andscalability with ease of management The solution must meet these requirements:• Support the provisioning of up to 500 new virtual machines into private datacenters or thepublic cloud• Support the modeling of a complex environment that consists of multiple virtual machineswhile supporting disaster recovery• Maintain steady-state environmentsWhich configuration management solution must the developer use?

A. Puppet
B. Terraform
C. Docker
D. Arable

Answer: B

Which OAuth mechanism enables clients to continue to have an active access tokenwithout further interaction from the user?

A. JWT
B. password grant 
C. refresh grant 
D. preshared key

Answer: C

A developer has issued git add file1 and file2 test.py command to add the three files for thenext commit, but then decides to executed test.py from this command. Which commandneeds to be used to exclude test.py from this commit but keep the rest of the files?

A. git clean — test.py
B. git reset - test py
C. git checkout - file1 file2
D. git stash -- file1 file 2

Answer: B

What is a well-defined concept for GDPR compliance?

A. Records that are relevant to an existing contract agreement can be retained as long asthe contract is in effect.
B. Data controllers must confirm to data subjects as to whether where, and why personaldata is being processed.
C. Personal data that was collected before the compliance standards were set do not needto be protected.
D. Compliance standards apply to organizations that have a physical presence in Europe.

Answer: B

Which function does Fluentd fulfill for application logging in Kubernetes? 

A. logging agent for distribution
B. backend time series database storage 
C. monitoring and log visualization 
D. messaging queueig infrastructure

Answer: A

Which two countermeasures help reduce the risk of playback attacks? (Choose two.)

A. Store data in a NoSQL database.
B. Implement message authentication (HMAC).
C. Enable end-to-end encryption.
D. Remove stack traces from errors.
E. Use short-lived access tokens.

Answer: B,E

An enterprise refactors its monolithic application into a modem cloud-native application thatis based on microservices. A key requirement of the application design is to ensure that theIT team is aware of performance issues or bottlenecks in the new application Which twoapproaches must be part of the design considerations'' (Choose two.)

A. Periodically scale up the resources of the host machines when the application starts toexperience high loads
B. Instrument the application code to gather telemetry data from logs, metrics or tracing
C. Adopt a service-oriented architecture to handle communication between the servicesthat make up the application
D. Deploy infrastructure monitoring agents into the operating system of the host machines
E. Implement infrastructure monitoring to ensure that pipeline components interoperatesmoothly and reliably

Answer: B,E