Which two security features are supported by NX-API (Choose two.)
Click on the arrows to vote for the correct answer
A. B. C. D.BC.
NX-API is a Cisco Nexus switch feature that provides a programmatic interface for accessing the switch's configuration and operational data. It allows network administrators to remotely manage the switch using a REST API or a Python SDK.
As for the security features that are supported by NX-API, here are the two correct answers:
A. NX-API support certificate-based authentication: NX-API supports certificate-based authentication, which is a secure authentication method that uses digital certificates to verify the identity of clients and servers. With certificate-based authentication, the client and server exchange public keys to establish a secure communication channel. This method is more secure than traditional password-based authentication, as it eliminates the risk of password theft or brute-force attacks.
B. Users must have appropriate accounts to access the device through NX-API: NX-API requires that users have appropriate accounts and privileges to access the device's configuration and operational data. This ensures that only authorized users can access the switch and perform administrative tasks. Users can be granted different levels of access based on their roles and responsibilities.
C. All communication to the device is encrypted when you use HTTPS: HTTPS (Hypertext Transfer Protocol Secure) is a protocol that provides secure communication over the internet. When you use HTTPS to access the NX-API interface, all communication between the client and server is encrypted using SSL/TLS (Secure Sockets Layer/Transport Layer Security). This ensures that sensitive data such as passwords, configuration settings, and operational data are protected from eavesdropping and tampering.
D. All communication to the device is encrypted when you use VPN: This answer is incorrect. NX-API does not support VPN-based encryption. VPN (Virtual Private Network) is a technology that creates a secure tunnel between two endpoints over an unsecured network, such as the internet. While VPN can be used to encrypt communication between two devices, it is not a security feature supported by NX-API.