Implementing Intrusion Policies with Cisco Firepower Management Center API

C.

To implement intrusion policies using the Cisco Firepower Management Center (FMC) API, the security network engineer needs to use one of the supported HTTP methods to send a request to the appropriate URI. The engineer needs to use the correct HTTP method and URI to ensure that the request is processed correctly by the FMC API.

The correct answer is B. Make a POST request to the URI /api/fmc_config/v1/domain/{DOMAIN_UUID}/policy/intrusionpolicies.

Explanation for why this is the correct answer:

• The HTTP method that should be used for creating a new resource is POST.
• The URI for the intrusion policies resource is /api/fmc_config/v1/domain/{DOMAIN_UUID}/policy/intrusionpolicies, where {DOMAIN_UUID} is the UUID of the domain.
• The intrusion policies resource is used to define the behavior of the intrusion detection system (IDS) and intrusion prevention system (IPS) of the FMC.

Explanation for why the other options are incorrect:

• A. Make a PATCH request to the URI /api/fmc_config/v1/domain/{DOMAIN_UUID}/policy/intrusionpolicies: The HTTP method PATCH is used to modify an existing resource, but this question requires the creation of a new intrusion policy. Therefore, this option is not correct.
• C. Intrusion policies can be read but not configured using the Cisco Firepower Management Center API: This option is incorrect because the FMC API supports the creation, modification, and deletion of intrusion policies, in addition to reading them.
• D. Make a PUT request to the URI /api/fmc_config/v1/domain/{DOMAIN_UUID}/policy/intrusionpolicies: The HTTP method PUT is used to update an existing resource. Therefore, this option is not correct for creating a new intrusion policy.