300-415 Question #141: Real Exam Question with Answer & Explanation

The correct answer is A: Configure Threat Grid API key.. To configure file analysis for Advanced Malware Protection (AMP), valid tasks include configuring the Threat Grid API key, defining a list of file types for analysis, and explicitly enabling the file analysis feature.

Security and Quality of Service

Question

To configure file analysis for Advanced Malware Protection, which tasks are valid? (Choose three.)

Options

AConfigure Threat Grid API key.
BConfigure file types list.
CEnable file analysis.
DEnable HTTPS inbound to the WAN Edge router.
EConfigure a security rule for Threat Grid.

Explanation

To configure file analysis for Advanced Malware Protection (AMP), valid tasks include configuring the Threat Grid API key, defining a list of file types for analysis, and explicitly enabling the file analysis feature.

Common mistakes.

D. Enabling HTTPS inbound to the WAN Edge router is generally not a direct task for configuring file analysis itself; file submission to Threat Grid typically uses outbound connections from the WAN Edge.
E. While security rules define traffic inspection, 'Configure a security rule for Threat Grid' is less specific than enabling file analysis and configuring the API key and file types; the file analysis feature itself is integrated into security policies, but this choice is less fundamental than options A, B, and C.

Concept tested. Cisco AMP file analysis configuration

Reference. https://www.cisco.com/c/en/us/td/docs/routers/sdwan/configuration/security/ios-xe-17/security-book-xe/m-security.html#concept_r4z_4dh_h2b

Topics

#AMP#File Analysis#Threat Grid#Security Configuration

Community Discussion

No community discussion yet for this question.

Full 300-415 Practice