Free Cisco 300-710 Actual Exam Questions - Question 7 Discussion

Probably D, Cisco Rapid Threat Containment mainly uses TrustSec segmentation to isolate threats.

I get why D sounds right, but changing authentication (A) can quickly lock down compromised accounts, which is another solid way to contain threats fast. So I’d go with A here.

B – sharing context data helps devices respond faster across the network.

It’s D because TrustSec segmentation is specifically designed to isolate devices or groups within the network quickly, which is exactly what rapid threat containment needs. The other options don’t directly focus on immediate threat isolation—changing authentication (A) or using TACACS+ (C) are more about access control and management, while sharing context data (B) helps with detection but not direct containment. So D fits best here.

Maybe D makes sense since TrustSec segmentation is about network segmentation, which can isolate threats quickly. But does Cisco Rapid Threat Containment only use segmentation or also apply other methods like changing authentication (A) or sharing context data (B)? The question isn’t clear if it’s one method or a combination. Also, is TACACS+ (C) relevant here or just a control protocol? Would be good to know the exact version or scope of Cisco Rapid Threat Containment they mean.