Cisco Certified DevNet Associate Practice Exam 2025: Latest Questions

A developer is consuming a REST API and needs to retrieve only the response headers (for example, to read rate-limit information) without downloading the full response body. Which HTTP method is most appropriate?

A Python script uses a bearer token to call a Cisco platform API. The call fails with HTTP 401 Unauthorized. The token is known to be valid and unexpired. Which issue is the MOST likely cause?

A developer is writing an automation tool that will run repeatedly and must be safe to re-run without changing device state after the first successful run. Which property is the developer targeting?

A network engineer is troubleshooting why a host cannot reach a server on a different subnet. The host can ping its default gateway but cannot ping the server. Which component is MOST likely missing or incorrect?

You are designing an internal service that consumes a third-party API. The provider enforces strict rate limits and occasionally returns transient errors. Which approach is the BEST practice to improve reliability without overloading the provider?

A developer is troubleshooting a REST API call that returns HTTP 415 Unsupported Media Type when sending JSON data. Which change is MOST likely to resolve the issue?

You need to automate a configuration change across hundreds of devices. The playbook must safely apply the intended configuration state and report changes consistently. Which automation approach BEST fits this requirement?

A team is choosing between using NETCONF/YANG and screen-scraping CLI output for automating network configuration. What is the PRIMARY advantage of NETCONF/YANG?

A Python client receives intermittent HTTP 409 Conflict responses when updating a resource via a REST API that uses ETags for concurrency control. The client currently performs: GET resource, modify fields, PUT resource. What is the BEST fix?

A company is deploying an internal microservice that stores an API key to call a Cisco platform. Security policy requires that secrets are not stored in source code, are rotated, and have least-privilege access. Which design BEST meets these requirements?

A developer is consuming a REST API and wants to avoid breaking changes when the API evolves. Which approach is the best practice to manage backward-incompatible changes?

An engineer needs to verify the identity of a web server when an automation script connects to an HTTPS API endpoint. Which security property is primarily provided by validating the server certificate chain?

A network team wants to use an infrastructure-as-code approach to consistently provision network settings across environments. Which workflow best aligns with GitOps principles?

A script sends a request to create a resource using a REST API. The server successfully creates the resource and returns the URI of the new resource in the response. Which HTTP status code is the most appropriate?

A developer is troubleshooting a REST API call that repeatedly returns HTTP 415. The request includes a JSON payload. What is the most likely issue?

A team is deploying a containerized microservice that must not store secrets (API keys) inside the container image or source repository. Which approach is the best practice?

You are integrating with a platform API that uses OAuth 2.0. The client is a backend service running on a server (not a user-facing app). The service needs an access token to call the API without user interaction. Which OAuth 2.0 grant type is the best fit?

A Python automation tool uses SSH to configure network devices. In production, it intermittently fails with authentication errors because engineers are prompted for a second factor (MFA). Which design change best supports reliable non-interactive automation while maintaining strong security controls?

A developer is building a network inventory service that frequently queries device state via an API. To reduce load, they add caching. However, they notice stale data issues after configuration changes. Which approach best balances performance and freshness using HTTP features?

An automation workflow collects interface operational state from hundreds of devices and stores it in a central system. The team wants near real-time updates without polling each device. Which design is most appropriate?

A developer is consuming a REST API and expects a JSON object in the response. Instead, the client receives HTML and JSON parsing fails. Which HTTP header should the client set to indicate it wants JSON responses?

You are writing a Python script to POST data to a REST endpoint that expects JSON in the request body. The server responds with HTTP 415 (Unsupported Media Type). Which change is the best fix?

A team is designing a CI/CD pipeline to deploy an internal API service. They want to prevent hard-coding credentials in the repository and keep them out of build logs. Which approach is the best practice?

An automation script uses SSH to configure dozens of network devices. It works for a few devices but intermittently fails with timeouts and incomplete configurations when run against the entire fleet in parallel. Which change is the best way to improve reliability without changing the network design?

A developer builds an integration that calls a Cisco platform API. The API uses OAuth 2.0 and returns an access token that expires. The integration runs as a long-lived background service with no user present. Which OAuth 2.0 grant type is the most appropriate?