検証済み300-720問題集と解答で2024年最新の300-720をダウンロード [Q56-Q76]

Share

検証済み300-720問題集と解答で2024年最新の300-720をダウンロード

更新された100%カバー率リアル300-720試験問題で100%合格保証付いてます


シスコ300-720試験に合格することで、候補者はシスコESAの管理と展開に熟練していることを証明します。電子メールのコミュニケーションを保護し、組織を高度な電子メールの脅威から保護することに熟練していることを証明します。この資格は、ITプロフェッショナルのスキルと知識の妥当性を証明し、同僚や潜在的な雇用主から信頼を得ることができます。シスコの認定はIT業界で高く評価されており、シスコ300-720認定を取得することで、様々なキャリアの機会を提供することができます。


Cisco Email Securityアプライアンスは、高度な脅威保護、スパムフィルタリング、およびデータ損失防止機能を提供する電子メールセキュリティソリューションです。これは、電子メール通信を確保し、サイバーの脅威から保護するために、あらゆるサイズの組織で広く使用されています。 Cisco 300-720試験では、電子メールセキュリティポリシー、メッセージフィルタリング、コンテンツフィルタリング、暗号化、認証など、Cisco Email Securityアプライアンスに関連する幅広いトピックをカバーしています。

 

質問 # 56
Which two configurations are used on multiple LDAP servers to connect with Cisco ESA? (Choose two.)

  • A. active-active
  • B. active-standby
  • C. load balancing
  • D. SLA monitor
  • E. failover

正解:C、E

解説:
You can enter multiple host names to configure the LDAP servers for failover or load-balancing. Separate multiple entries with commas.
Reference: https://www.cisco.com/c/en/us/td/docs/security/ces/user_guide/sma_user_guide/ b_SMA_Admin_Guide_ces_11/b_SMA_Admin_Guide_chapter_01010.html


質問 # 57
Which type of attack is prevented by configuring file reputation filtering and file analysis features?

  • A. zero-day
  • B. denial of service
  • C. backscatter
  • D. phishing

正解:A

解説:
The type of attack that is prevented by configuring file reputation filtering and file analysis features is zero-day. Zero-day attacks are those that exploit unknown vulnerabilities in software or systems before they are patched or fixed. File reputation filtering and file analysis features help to protect against zero-day attacks by checking the reputation of files attached to email messages and sending them to a cloud-based service for dynamic analysis.


質問 # 58
Which scenario prevents a message from being sent to the quarantine as an action in the scan behavior on Cisco ESA?

  • A. The "modify the message subject" is already set.
  • B. The "add custom header" action is performed first.
  • C. A policy quarantine is missing.
  • D. More than one email pipeline is defined.

正解:C

解説:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa13-
0/user_guide/b_ESA_Admin_Guide_13-0.pdf P.320


質問 # 59
What are two prerequisites for implementing undesirable URL protection in Cisco ESA? (Choose two.)

  • A. Enable outbreak filters.
  • B. Enable email relay.
  • C. Enable antispam scanning.
  • D. Enable port bouncing.
  • E. Enable antivirus scanning.

正解:A、C


質問 # 60
Which benefit does enabling external spam quarantine on Cisco SMA provide?

  • A. ability to consolidate spam quarantine data from multiple Cisco ESA to one central console
  • B. access to the spam quarantine interface on which a user can release, duplicate, or delete
  • C. ability to scan messages by using two engines to increase a catch rate
  • D. ability to back up spam quarantine from multiple Cisco ESAs to one central console

正解:A

解説:
External spam quarantine is a feature that allows Cisco SMA to store and manage spam messages quarantined by multiple Cisco ESAs in one central location, providing a unified view and administration of the spam quarantine data.


質問 # 61
Drag and Drop Question
Drag and drop the Cisco ESA reactions to a possible DLP from the left onto the correct action types on the right.

正解:

解説:


質問 # 62
An administrator must ensure that emails sent from [email protected] are routed through an alternate virtual gateway. Drag and drop the snippet from the bottom onto the blank in the graphic to finish the message filter syntax. Not all snippets are used.

正解:

解説:


質問 # 63
How does the graymail safe unsubscribe feature function?

  • A. It strips the malicious content of the URI before unsubscribing.
  • B. It redirects the end user who clicks the unsubscribe button to a sandbox environment to allow a safe unsubscribe.
  • C. It checks the URI reputation and category and allows the content filter to take an action on it.
  • D. It checks the reputation of the URI and performs the unsubscribe process on behalf of the end user.

正解:D

解説:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/200383-Graymail- Detection-and-Safe-Unsubscribin.html


質問 # 64
Drag and drop the Cisco ESA reactions to a possible DLP from the left onto the correct action types on the right.

正解:

解説:

Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/ b_ESA_Admin_Guide_chapter_010001.html (message actions)


質問 # 65
An administrator is trying to enable centralized PVO but receives the error, "Unable to proceed with Centralized Policy, Virus and Outbreak Quarantines configuration as esa1 in Cluster has content filters / DLP actions available at a level different from the cluster level." What is the cause of this error?

  • A. DLP is not configured on host1.
  • B. Content filters are configured at the machine-level on esa1.
  • C. DLP is configured at the cluster-level on esa2.
  • D. DLP is configured at the domain-level on esa1.

正解:B

解説:

https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/200083-Requirements-for-the-PVO-Migration-Wizar.html


質問 # 66
Which Cisco Secure Email Threat Defense visibility and remediation mode is only available when using Cisco Secure Email Gateway as the message source?

  • A. Cisco Security Cloud Sign On
  • B. Microsoft 365 Authentication
  • C. Basic Authentication
  • D. No Authentication

正解:D

解説:
According to the Cisco Secure Email Threat Defense User Guide, the No Authentication option is only available if you are using a Cisco Secure Email Gateway (SEG) as your message source. This option allows visibility only, no remediation1.
The other options are not valid because:
A) Basic Authentication is not a visibility and remediation mode for Cisco Secure Email Threat Defense. It is a method of authenticating users with a username and password2.
C) Microsoft 365 Authentication is a visibility and remediation mode that allows you to use Microsoft 365 credentials to access Cisco Secure Email Threat Defense. It has two sub-options: Read/Write and Read. This mode is available for both Microsoft 365 and Gateway message sources1.
D) Cisco Security Cloud Sign On is not a visibility and remediation mode for Cisco Secure Email Threat Defense. It is a service that manages user authentication for Cisco security products, including Cisco Secure Email Threat Defense3.


質問 # 67
Which action on the Cisco ESA provides direct access to view the safelist/blocklist?

  • A. Monitor Incoming/Outgoing Listener.
  • B. Show the SLBL cache on the CLI.
  • C. Debug the mail flow policy.
  • D. Export the SLBL to a .csv file.

正解:D


質問 # 68
A Cisco Secure Email Gateway appliance is processing many messages that are sent to invalid recipients verification. Which two steps are required to accomplish this task? (Choose two.)

  • A. Configure incoming mail policy to query LDAP server
  • B. Enable external LDAP authentication
  • C. Configure the LDAP query on a listener
  • D. Configure LDAP server profiles
  • E. Enable LDAP authentication on a listener

正解:C、D

解説:
To enable LDAP recipient verification on a Cisco Secure Email Gateway appliance, you need to configure the LDAP query on a listener and configure LDAP server profiles. The LDAP query specifies the criteria for matching recipient addresses against an LDAP directory. The LDAP server profile defines the connection settings and authentication credentials for accessing an LDAP server2. Reference = User Guide for AsyncOS 12.0 for Cisco Email Security Appliances - GD (General Deployment) - Configuring LDAP Queries [Cisco Secure Email Gateway] - Cisco


質問 # 69
What is a benefit of implementing URL filtering on the Cisco ESA?

  • A. blacklists spam
  • B. provides URL reputation protection
  • C. enhances reputation against malicious URLs
  • D. removes threats from malicious URLs

正解:B


質問 # 70
Which two components must be configured to perform DLP scanning? (Choose two.)

  • A. Add a DLP policy on the Incoming Mail Policy.
  • B. Add a DLP policy to the DLP Policy Manager.
  • C. Enable a DLP policy on the DLP Policy Customizations.
  • D. Add a DLP policy to the Outgoing Content Filter.
  • E. Enable a DLP policy on the Outgoing Mail Policy.

正解:B、E

解説:
To perform DLP scanning on Cisco ESA, two components must be configured:
Add a DLP policy to the DLP Policy Manager, which is a repository of predefined or custom DLP policies that specify what types of data to scan for and what actions to take if a match is found.
Enable a DLP policy on the Outgoing Mail Policy, which is a set of rules that determine how outgoing messages are processed by Cisco ESA, including whether to apply DLP scanning or not.


質問 # 71
Which action must be taken before a custom quarantine that is being used can be deleted?

  • A. Delete the quarantine that is not assigned to a filter.
  • B. Delete only the unused quarantine.
  • C. Delete the quarantine that is assigned to a filter.
  • D. Remove the quarantine from the message action of a filter.

正解:D


質問 # 72
What must be configured to allow the Cisco ESA to encrypt an email using the Cisco Registered Envelope Service?

  • A. message encryption from a content filter that select "Message Encryption" over TLS
  • B. provisioned email encryption profile
  • C. message encryption from the mail flow policies with "CRES" selected
  • D. content filter to forward the email to the Cisco Registered Envelope server

正解:A

解説:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_010010.html


質問 # 73
A company has deployed a new mandate that requires all emails sent externally from the Sales Department to be scanned by DLP for PCI-DSS compliance. A new DLP policy has been created on the Cisco ESA and needs to be assigned to a mail policy named 'Sales' that has yet to be created.
Which mail policy should be created to accomplish this task?

  • A. Outgoing Mail Policy
  • B. Preliminary Mail Policy
  • C. Incoming Mail Flow Policy
  • D. Outgoing Mail Flow Policy

正解:A


質問 # 74
A Cisco ESA administrator has noticed that new messages being sent to the Centralized Policy Quarantine are being released after one hour. Previously, they were being held for a day before being released.
What was configured that caused this to occur?

  • A. The retention period was set to default.
  • B. The threshold settings were set to override the clock settings.
  • C. The threshold settings were set to default.
  • D. The retention period was changed to one hour.

正解:A

解説:
You can configure Policy, Virus, and Outbreak Quarantines in any one of the following ways:
Choose Quarantine > Other Quarantine > View > +.
Choose Monitor > Policy, Virus, and Outbreak Quarantines and do one of the following.
Click Add Policy Quarantine.
Keep the following in mind, changing the retention time of the File Analysis quarantine from the default of one hour is not recommended.
https://www.cisco.com/c/en/us/td/docs/security/esa/esa14-0/user_guide/b_ESA_Admin_Guide_14-0/b_ESA_Admin_Guide_12_1_chapter_011111.html?bookSearch=true


質問 # 75
An administrator needs to configure Cisco ESA to ensure that emails are sent and authorized by the owner of the domain. Which two steps must be performed to accomplish this task? (Choose two.)

  • A. Create Mx record.
  • B. Create DMARC profile.
  • C. Enable SPF verification.
  • D. Create signing profile.
  • E. Generate keys.

正解:B、C


質問 # 76
......

リアル問題集で100%無料300-720試験問題集を試そう:https://jp.fast2test.com/300-720-premium-file.html

実際の300-720問題集最新練習テスト問題集:https://drive.google.com/open?id=1efhzntR7i0-xBf3WZFmUgP_q5yx_Nemn


弊社を連絡する

我々は12時間以内ですべてのお問い合わせを答えます。

我々の働いている時間: ( GMT 0:00-15:00 )
月曜日から土曜日まで

サポート: 現在連絡 

English Deutsch 繁体中文 한국어