CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Cisco®
  5. 300-910

Free 300-910 Exam Braindumps (page: 2)

Page 1 of 29
PDF with 130 Questions

DRAG DROP (DRAG AND DROP IS NOT SUPPORTED)
The IaC configuration for an application is being deployed using a CI/CD pipeline. Drag and drop the steps for this pipeline from the left into the correct order that they would be executed on the right.
Not all options are used.

  1. See Explanation section for answer.

Answer(s): A

Explanation:


- The code repository is updated by a user.
- The CI tool is notified of an update.
- Integration test of the most recent configurations is performed
- The configuration changes are pushed to devices.



A DevOps engineer must validate the working state of the network before implementing a CI/CD pipeline model. Which configuration management tool is designed to accomplish this?

  1. Jenkins
  2. Genie CLI
  3. Travis CI
  4. Python YAML data libraries

Answer(s): B

Explanation:

Genie CLI is a configuration management tool that is designed to validate the working state of the network before implementing a CI/CD pipeline model. Genie CLI provides a set of commands that can be used to check the state of the network, view logs, and make changes to network configurations. It is a powerful tool for validating the state of the network before making changes, and can help avoid costly mistakes or unexpected issues.



Which two practices help make the security of an application a more integral part of the software development lifecycle? (Choose two.)

  1. Add a step to the CI/CD pipeline that runs a dynamic code analysis tool during the pipeline execution.
  2. Add a step to the CI/CD pipeline that runs a static code analysis tool during the pipeline execution.
  3. Use only software modules that are written by the internal team.
  4. Add a step to the CI/CD pipeline to modify the release plan so that updated versions of the software are made available more often.
  5. Ensure that the code repository server has enabled drive encryption and stores the keys on a Trusted Platform Module or Hardware Security Module.

Answer(s): A,B

Explanation:

Adding a step to the CI/CD pipeline that runs a dynamic code analysis tool and a static code analysis tool during the pipeline execution helps make the security of an application a more integral part of the software development lifecycle. Dynamic code analysis tools search for coding errors and vulnerabilities while the application is running, while static code analysis tools scan the source code for potential errors and vulnerabilities. This ensures that any security issues are identified and addressed before the application is deployed. Additionally, using automated tools helps to reduce the amount of manual effort required for security testing and can reduce the risk of security flaws being introduced.



A CI/CD pipeline that builds infrastructure components using Terraform must be designed. A step in the pipeline is needed that checks for errors in any of the .tf files in the working directory. It also checks the existing state of the defined infrastructure.

Which command does the pipeline run to accomplish this goal?

  1. terraform plan
  2. terraform check
  3. terraform fmt
  4. terraform validate

Answer(s): A

Explanation:

https://www.terraform.io/docs/cli/commands/validate.html "use the terraform plan command instead, which includes an implied validation check."






Post your Comments and Discuss Cisco® 300-910 exam with other Community members:

300-910 Discussions & Posts