Exam 350-601 topic 1 question 277 discussion

Actual exam question from Cisco's 350-601

Question #: 277
Topic #: 1

A customer undergoes an IT security review assessment. The auditor must have read-only access to the Cisco Nexus 9000 Series Switch to perform the configuration review. The customer implements this security role for the auditor: role name audit rule 1 permit command * rule 2 - Output omitted -- username auditor password C4SAFF1B05EB1968$c0 role audit
Which configuration snippet must complete the configuration?

A. deny command configure terminal
B. deny command write *
C. permit command show *
D. permit command enable

Show Suggested Answer

Suggested Answer: A 🗳️
Reference:
https://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus9000/sw/6-x/security/configuration/guide/b_Cisco_Nexus_9000_Series_NX-
OS_Security_Configuration_Guide/b_Cisco_Nexus_9000_Series_NX-OS_Security_Configuration_Guide_chapter_01001.html

by 7korn7 at Sept. 23, 2022, 8:43 a.m.

Comments

Submit Cancel

GuyThatTakesDumps

7 months ago

Selected Answer: A

A is the one!

upvoted 1 times

...

7korn7

7 months ago

Selected Answer: A

deny configure terminal Before you begin If you want to distribute the user role configuration, enable user role configuration distribution on all Cisco NX-OS devices to which you want the configuration distributed. SUMMARY STEPS configure terminal role name role-name rule number {deny | permit} command command-string rule number {deny | permit} {read | read-write} rule number {deny | permit} {read | read-write} feature feature-name rule number {deny | permit} {read | read-write} feature-group group-name rule number {deny | permit} {read | read-write} oid snmp_oid_name (Optional) description text exit

upvoted 1 times

...

Exam 350-601 All Questions

View all questions & answers for the 350-601 exam

Exam 350-601 topic 1 question 277 discussion

Comments

GuyThatTakesDumps

7korn7

SY0-701