An engineer has been tasked with providing disaster recovery for an organization's primary Cisco FMC.
What must be done on the primary and secondary Cisco FMCs to ensure that a copy of the original corporate policy is available if the primary Cisco FMC fails?
Click on the arrows to vote for the correct answer
A. B. C. D.C.
https://www.cisco.com/c/en/us/td/docs/security/firepower/620/configuration/guide/fpmc-config-guide-v62/firepower_management_center_high_availability.htmlIn order to provide disaster recovery for an organization's primary Cisco FMC, the engineer must ensure that a copy of the original corporate policy is available in the event that the primary device fails.
There are several ways to achieve this, but the best option is to configure high-availability on both the primary and secondary Cisco FMCs. This ensures that if the primary device fails, the secondary device can take over and continue to enforce the policies defined by the organization.
High-availability can be configured using a variety of methods, including clustering, active/passive failover, or load balancing. These methods are designed to ensure that both the primary and secondary devices are aware of each other's state, and can automatically take over in the event of a failure.
Another option is to restore the primary Cisco FMC backup configuration to the secondary Cisco FMC device when the primary device fails. This ensures that the secondary device has a copy of the original corporate policy, but it requires manual intervention to restore the backup configuration, which can be time-consuming and prone to errors.
Connecting the primary and secondary Cisco FMC devices with Category 6 cables of not more than 10 meters in length is not relevant to providing disaster recovery for the primary device. This is related to network connectivity between the two devices, and does not ensure that a copy of the original corporate policy is available in the event of a failure.
Placing the active Cisco FMC device on the same trusted management network as the standby device is also not directly related to providing disaster recovery. This is related to network configuration and security, and does not ensure that a copy of the original corporate policy is available in the event of a failure.
In summary, the best option for ensuring that a copy of the original corporate policy is available if the primary Cisco FMC fails is to configure high-availability on both the primary and secondary devices. This ensures that both devices are aware of each other's state and can automatically take over in the event of a failure.