Implementing and Operating Cisco Data Center Core Technologies (DCCOR) — Question 204

An engineer configures port security on a Cisco MDS 9000 Series Switch. The MDS switch configuration must meet these requirements:

• The switch must initiate the VSAN 4 port security database despite any conflicts.
• New devices must be statically added to the switch.
• Configuration changes for VSAN 4 must be applied throughout the fabric with any locks on the fabric released.

Which configuration set meets these requirements?

Answer options

• A. port-security activate vsan 4 no port-security auto-learn vsan 4 port-security allocate port-security commit vsan 4
• B. port-security activate vsan 4 force port-security auto-learn vsan 4 port-security distribute port-security commit
• C. port-security activate vsan 4 port-security manual-learn vsan 4 port-security allocate port-security commit
• D. port-security activate vsan 4 force no port-security auto-learn vsan 4 port-security distribute port-security commit vsan 4

Correct answer: D

Explanation

The correct answer is D because it activates port security with the 'force' option, allowing the VSAN 4 port security database to be created despite conflicts. It also disables auto-learning, ensuring that new devices are statically added, and uses 'distribute' to apply changes across the fabric while releasing locks. Options A and C do not meet the requirements for conflict resolution or fabric-wide application, while B incorrectly enables auto-learning.