Amazon
Avaya
Cisco
CompTIA
CrowdStrike
EC-Council
EXIN
Fortinet
Google
ISC
ISC2
ITIL
Juniper
Microsoft
NVIDIA
Okta
Palo Alto Networks
Salesforce
SAP
ServiceNow
All Vendors

Cisco Implementing Application Centric Infrastructure (DCACI) 300-620 Exam Questions in PDF

Free Cisco 300-620 Dumps Questions (page: 1)

300-620 PDF — 389 Questions

An engineer is implementing a Cisco ACI data center network that includes Cisco Nexus 2000 Series 10G fabric extenders. Which physical topology is supported?





Answer(s): D

Explanation:

Option D is correct because Cisco ACI with Nexus 2000 Series fabric extenders (FEX) uses a topology where the FEX connects to a single upstream APIC-controlled leaf switch, forming a spine-leaf with FEXs as fabric extenders behind a single parent leaf. The other options are incorrect because:
A) Implies a topology not supported by FEX integration with ACI for 10G fabric extenders.
B) Describes a non-existent or unsupported dispersion of FEXs across multiple distinct spine/leaf boundaries in this context.
C) Suggests a topology incompatible with FEX-to-APIC control and established ACI fabric design.
D) Matches the supported single-leaf-connected FEX deployment model.



An ACI administrator notices a change in the behavior of the fabric. Which action must be taken to determine if a human intervention introduced the change?

  1. Inspect event records in the APIC UI to see all actions performed by users.
  2. Inspect /var/log/audit_messages on the APIC to see a record of all user actions.
  3. Inspect audit logs in the APIC UI to see all user events.
  4. Inspect the output of show command history in the APIC CLI.

Answer(s): C

Explanation:

Option C is correct because APIC UI audit logs capture user events and changes, allowing verification of human interventions and correlating actions with fabric behavior.
A) Incorrect — Event records in the APIC UI may show actions but are not as specifically framed as audit logs for all user events; scope might be limited or filtered.
B) Incorrect — /var/log/audit_messages is not standard APIC UI-accessible; APIC audit is exposed in UI/logs rather than host-level audit_messages.
D) Incorrect — show command history in the APIC CLI is not a typical or reliable source for comprehensive user-audit trails across the fabric; UI audit is preferred.



An engineer is creating a configuration import policy that must terminate if the imported configuration is incompatible with the existing system. Which import mode achieves this result?

  1. merge
  2. atomic
  3. best effort
  4. replace

Answer(s): B

Explanation:

Option B is correct because atomic import mode ensures the entire configuration import is treated as an all-or-nothing operation; if any part is incompatible with the existing system, the import is aborted and no changes are applied, preserving system integrity. A) merge allows applying changes incrementally, which can leave partial updates and conflicts. C) best effort attempts to apply as much as possible, tolerating incompatibilities. D) replace substitutes the current configuration wholesale but does not inherently terminate on incompatibility; it can still apply if local checks pass.


Reference:

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/4-x/aci-fundamentals/Cisco- ACI-Fundamentals-401/Cisco-ACI-Fundamentals-401_chapter_01011.html



Which components must be configured for the BGP Route Reflector policy to take effect?

  1. spine fabric interface overrides and profiles
  2. access policies and profiles
  3. pod policy groups and profiles
  4. leaf fabric interface overrides and profiles

Answer(s): C

Explanation:

Option C is correct because BGP Route Reflector policy in DCACI is applied via pod policy groups and profiles, which define route reflection behavior within a pod and propagate routes accordingly.
A) Incorrect — spine fabric interface overrides and profiles pertain to spine-specific interface configurations, not route reflector policy scope.
B) Incorrect — access policies and profiles relate to user or device access control, not BGP route reflection behavior.
D) Incorrect — leaf fabric interface overrides and profiles govern leaf-side interface overrides, not the Route Reflector policy application.


Reference:

https://www.cisco.com/c/en/us/solutions/collateral/data-center-virtualization/application-centric- infrastructure/guide-c07-743150.html#2DistributeexternalrouteswithintheACIfabric



Which type of policy configures the suppression of faults that are generated from a port being down?

  1. fault lifecycle assignment
  2. event lifecycle assignment
  3. fault severity assignment
  4. event severity assignment

Answer(s): C

Explanation:

Option C is correct because fault suppression policies in ACI DCACI control how faults generated by a down port are filtered or suppressed based on fault severity assignments. This directly targets faults, not events, and applies to fault lifecycle/severity handling.
A) Incorrect — fault lifecycle assignment governs the stages a fault goes through (creation, closure, rollback), not suppression rules for down-port faults.
B) Incorrect — event lifecycle assignment handles events, not faults, and does not specify suppression of down-port faults.
D) Incorrect — event severity assignment pertains to events’ severity, not faults arising from a port down.


Reference:

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/all/faults/guide/ b_APIC_Faults_Errors/b_IFC_Faults_Errors_chapter_01.html



Which type of profile needs to be created to deploy an access port policy group?

  1. attachable entity
  2. Pod
  3. module
  4. leaf interface

Answer(s): D

Explanation:

Option D is correct because deploying an access port policy group requires a leaf interface profile to map policies to specific leaf ports in the ACI fabric.
A) Incorrect — Attachable entity profile (AEP) defines how an endpoint device attaches to an EPG, not a port policy for access port grouping.
B) Incorrect — Pod involves logical grouping of fabric elements, not the specific port policy application to an access port.
C) Incorrect — Module is a hardware construct in APIC terms, not the profile type used to deploy an access port policy group.



A situation causes a fault to be raised on the APIC. The ACI administrator does not want that fault to be raised because it is not directly relevant to the environment. Which action should the administrator take to prevent the fault from appearing?

  1. Under System -> Faults, right-click on the fault and select Acknowledge Fault so that acknowledged faults will immediately disappear.
  2. Create a stats threshold policy with both rising and falling thresholds defined so that the critical severity threshold matches the squelched threshold.
  3. Under System -> Faults, right-click on the fault and select Ignore Fault to create a fault severity assignment policy that hides the fault.
  4. Create a new global health score policy that ignores specific faults as identified by their unique fault code.

Answer(s): C

Explanation:

Option C is correct because ignoring a fault via Ignore Fault creates a fault severity assignment policy that hides that fault from the APIC fault views, effectively suppressing it for the administrator’s environment.
A is incorrect because Acknowledge Fault only marks the fault as acknowledged; it does not hide or suppress it from fault views.
B is incorrect because a stats threshold policy controls performance metrics and thresholds, not fault visibility or suppression.
D is incorrect because a global health score policy can influence health scoring but does not provide per-fault hiding by fault code; it’s not the mechanism for suppressing a specific fault.



A RADIUS user resolves its role via the Cisco AV Pair. What object does the Cisco AV Pair resolve to?

  1. tenant
  2. security domain
  3. primary Cisco APIC
  4. managed object class

Answer(s): D

Explanation:

Option D is correct because Cisco AV Pair resolves to a managed object class within APIC’s ABAC/Attribute-Policy framework, mapping RADIUS attributes to specific UCS/ACI managed objects for enforcement.
A) Incorrect — tenant is not the direct object resolved by AV Pair; AV Pair targets a managed object class for policy application, not a tenant entity itself.
B) Incorrect — security domain is not the AV Pair resolution target; AV Pair maps to object classes used for policy evaluation, not a domain construct.
C) Incorrect — primary Cisco APIC is not what the AV Pair resolves to; APIC is the controller, while AV Pair maps to a class of managed objects.


Reference:

https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/2-x/Security_config/ b_Cisco_APIC_Security_Configuration_Guide/b_Cisco_APIC_Security_Guide_chapter_01011.html



Viewing page 1 of 50

Share your comments for Cisco 300-620 exam with other users:

J
johnpaul
11/15/2023 7:55:00 AM

first time using this site

ROMANIA
O
omiornil@gmail.com
7/25/2023 9:36:00 AM

please sent me oracle 1z0-1105-22 pdf

BANGLADESH
J
John
8/29/2023 8:59:00 PM

very helpful

Anonymous
K
Kvana
9/28/2023 12:08:00 PM

good info about oml

UNITED STATES
C
Checo Lee
7/3/2023 5:45:00 PM

very useful to practice

UNITED STATES
D
dixitdnoh@gmail.com
8/27/2023 2:58:00 PM

this website is very helpful.

UNITED STATES
S
Sanjay
8/14/2023 8:07:00 AM

good content

INDIA
B
Blessious Phiri
8/12/2023 2:19:00 PM

so challenging

Anonymous
P
PAYAL
10/17/2023 7:14:00 AM

17 should be d ,for morequery its scale out

Anonymous
K
Karthik
10/12/2023 10:51:00 AM

nice question

Anonymous
G
Godmode
5/7/2023 10:52:00 AM

yes.

NETHERLANDS
B
Bhuddhiman
7/30/2023 1:18:00 AM

good mateial

Anonymous
K
KJ
11/17/2023 3:50:00 PM

good practice exam

Anonymous
S
sowm
10/29/2023 2:44:00 PM

impressivre qustion

Anonymous
C
CW
7/6/2023 7:06:00 PM

questions seem helpful

Anonymous
L
luke
9/26/2023 10:52:00 AM

good content

Anonymous
Z
zazza
6/16/2023 9:08:00 AM

question 21 answer is alerts

ITALY
A
Abwoch Peter
7/4/2023 3:08:00 AM

am preparing for exam

Anonymous
M
mohamed
9/12/2023 5:26:00 AM

good one thanks

EGYPT
M
Mfc
10/23/2023 3:35:00 PM

only got thru 5 questions, need more to evaluate

Anonymous
W
Whizzle
7/24/2023 6:19:00 AM

q26 should be b

Anonymous
S
sarra
1/17/2024 3:44:00 AM

the aaa triad in information security is authentication, accounting and authorisation so the answer should be d 1, 3 and 5.

UNITED KINGDOM
D
DBS
5/14/2023 12:56:00 PM

need to attend this

UNITED STATES
D
Da_costa
8/1/2023 5:28:00 PM

these are free brain dumps i understand, how can one get free pdf

Anonymous
V
vikas
10/28/2023 6:57:00 AM

provide access

EUROPEAN UNION
A
Abdullah
9/29/2023 2:06:00 AM

good morning

Anonymous
R
Raj
6/26/2023 3:12:00 PM

please upload the ncp-mci 6.5 dumps, really need to practice this one. thanks guys

Anonymous
M
Miguel
10/5/2023 12:21:00 PM

question 16: https://help.salesforce.com/s/articleview?id=sf.care_console_overview.htm&type=5

SPAIN
H
Hiren Ladva
7/8/2023 10:34:00 PM

yes i m prepared exam

Anonymous
O
oliverjames
10/24/2023 5:37:00 AM

my experience was great with this site as i studied for the ms-900 from here and got 900/1000 on the test. my main focus was on the tutorials which were provided and practice questions. thanks!

GERMANY
B
Bhuddhiman
7/20/2023 11:52:00 AM

great course

UNITED STATES
A
Anuj
1/14/2024 4:07:00 PM

very good question

Anonymous
S
Saravana Kumar TS
12/8/2023 9:49:00 AM

question: 93 which statement is true regarding the result? sales contain 6 columns and values contain 7 columns so c is not right answer.

INDIA
L
Lue
3/30/2023 11:43:00 PM

highly recommend just passed my exam.

CANADA
AI Tutor 👋 I’m here to help!