A and D are correct A: you apply policies based on roles, departments, groups, and basically almost any segmentation you configured in your environment. and it doesn't matter how your underlay looks like B: you can apply policies based on identity not IP which makes the management easier

A,D. TrustSec do not provid eencription or protección for malware/virus

A and D

A and D

Answer A, D TrustSec benefits: Create and manage policies in a simple matrix using plain language Easily manage access control and segmentation across the enterprise while maintaining compliance Control access to critical assets by business role, device type, and location reference: https://www.quora.com/What-is-Cisco-TrustSec

A. Consistent network segmentation - TrustSec provides a robust framework for implementing secure and consistent network segmentation based on identity and policy, rather than relying solely on traditional IP-centric methods. D. Simplified management of network access - By leveraging identity-based access control and simplified policy management, TrustSec makes it easier to manage network access rights, reducing complexity and enhancing security posture. Thus, options A and D are the correct answers, as they directly align with the primary functionalities of Cisco TrustSec.

encryption is hop by hop not end to end but C & E are benefits that are convoyed from this feature of TrustSec"Firewall rules are streamlined by using business-level profiles"

B, C & E are features of AMP and firepower.

B and D.

why not CE?