SNCF — Securing Networks with Firepower — Question 43

An engineer has been tasked with using Cisco FMC to determine if files being sent through the network are malware. Which two configuration tasks must be performed to achieve this file lookup? (Choose two.)

Answer options

• A. The Cisco FMC needs to include a SSL decryption policy.
• B. The Cisco FMC needs to connect to the Cisco AMP for Endpoints service.
• C. The Cisco FMC needs to connect to the Cisco ThreatGrid service directly for sandboxing.
• D. The Cisco FMC needs to connect with the FireAMP Cloud.
• E. The Cisco FMC needs to include a file inspection policy for malware lookup.

Correct answer: D, E

Explanation

The correct answers are D and E because connecting to the FireAMP Cloud allows the FMC to leverage cloud-based analytics for file inspection, while implementing a file inspection policy is essential for scanning files for malware. Options A, B, and C are not specifically required for the file lookup process described.