1. Home
  2. Cisco
  3. 300-620

Cisco 300-620 Online Practice Questions and Exam Preparation

300-620 Exam Details

  • Exam Code
    :300-620
  • Exam Name
    :Implementing Cisco Application Centric Infrastructure (DCACI)
  • Certification
    :CCNP Data Center
  • Vendor
    :Cisco
  • Total Questions
    :388 Q&As
  • Last Updated
    :May 29, 2026

Cisco 300-620 Online Questions & Answers

  • Question 281:

    A customer implements RBAC on a Cisco APIC using a Windows RADIUS server that is configured with network control policies. The APIC configuration is as follows: Tenant = TenantX Security Domain = TenantX-SD User = X

    The customer requires User X to have access to TenantX only, without any extra privilege in the Cisco ACI fabric domain. Which Cisco AV pair must be implemented on the RADIUS server to meet these requirement?

    A. shell:domains = TenantX-SD/fabric-admin/,common//read-all
    B. shell:domains = TenantX-SD/tenant-admin
    C. shell:domains = TenantX-SD/tenant-ext-admin/,common//read-all
    D. shell:domains = TenantX-SD/tenant-admin/,common//read-all

  • Question 282:

    When Cisco ACI connects to an outside Layers 2 network, where does the ACI fabric flood the STP BPDU frame?

    A. within the bridge domain
    B. within the APIC
    C. within the access encap VLAN
    D. between all the spine and leaf switches

  • Question 283:

    Refer to the exhibit.

    A network engineer must configure a Cisco ACI fabric for the External Bridged network to communicate with L3Out. Which action accomplishes this goal?

    A. Consume Test_Contract-APP-WEB from CCDM_EPG.
    B. Provide Test_Contract-DB-APP to MSPKAL.
    C. Provide Test_Contract-APP-WEB to MSP_EPG.
    D. Consume Test_Contract-DB-APP from Presentation.
    E. Consume Test_Contract-DB-APP from Presentation.

  • Question 284:

    Which endpoint learning operation is completed on the ingress leaf switch when traffic is received from a Layer 3 Out?

    A. The source MAC address of the traffic is learned as a local endpoint.
    B. The source MAC address of the traffic is learned as a remote endpoint.
    C. The source IP address of the traffic is learned as a remote endpoint.
    D. The source IP address of the traffic is learned as a local endpoint.

  • Question 285:

    A network engineer demonstrates Cisco ACI to a customer. One of the test cases is to validate a disaster recovery event by resetting the ACI fabric to factory and then restoring the fabric to the state it was in before the event. Which setting must be enabled on ACI to export all configuration parameters that are necessary to meet these requirements?

    A. enabled AES encryption
    B. generated a tech-support file
    C. encrypted export destination
    D. enabled JSON format export

  • Question 286:

    Refer to the exhibit.

    A network engineer must configure a user tenant to raise the error shown when configuring a new EPG. Which action accomplishes this goal?

    A. From Access Policies, set Exceed Action to Fail Transaction Action.
    B. From Fabric Policies, set Exceed Action to Fail Transaction Action.
    C. From Access Policies, set Exceed Action to Raise Fault Action.
    D. From Fabric Policies, set Exceed Action to Raise Fault Action.

  • Question 287:

    A customer must deploy three Cisco ACI based data centers. Each site must be separated from the others. Which characteristic of Cisco ACI Multi-Pod makes it unsuitable for this deployment?

    A. creates a virtual pod in the remote location
    B. requires all pods to share the same Cisco APIC cluster
    C. has distance and scale limitations
    D. places leaf switches in the remote site that belong to the same fabric as at the headquarters site

  • Question 288:

    A fabric engineer is defining a bridge domain for an application segment. Which Cisco ACI logical construct provides the Layer 2 forwarding context for attached EPGs?

    A. tenant
    B. VRF
    C. bridge domain
    D. application profile

  • Question 289:

    Refer to the exhibit.

    An engineer plans to upgrade the Cisco ACI fabric. Leaf1 and Leaf2 are deployed in a VPC. The fabric is peering with R1 using BGP protocol.

    Which two actions upgrade the fabric nondisruptively? (Choose two.)

    A. Configure the Graceful upgrade option.
    B. Disable the BGP neighborship between Cisco ACI fabric and R1.
    C. Enable the Graceful Insertion and Removal option.
    D. Configure one maintenance group for every leaf.
    E. Create one update group for all spines.

  • Question 290:

    A network engineer must optimize a Cisco ACI multi-pod deployment. Both pods are using the same pod policy group. The customer requirement is to avoid inter-pod traffic loss in case of planned or unplanned spine reload. Which action accomplishes this goal?

    A. Configure the COOP type as compatible in COOP Group Policy.
    B. Configure MACsec in the MACsec Fabric Interface Policy.
    C. Configure a lower IS-IS metric for redistributed routes in ISIS Policy.
    D. Configure all spines as Route Reflectors in the BGP Route Reflector Policy.

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 300-620 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.