nerdexam
Cisco

350-701 · Question #731

350-701 Question #731: Real Exam Question with Answer & Explanation

The correct answer is B. Matched Content Logging. To allow viewing of email content that violates a DLP policy on a Cisco Secure Email Gateway, the 'Matched Content Logging' setting must be enabled.

Submitted by emma.c· Mar 30, 2026Content Security

Question

An engineer must configure a Cisco Secure Email Gateway to use DLP for a company. The company also wants to see the content of emails that violate the DLP policy. Which configuration must be modified in the Data Loss Prevention Settings section to meet the requirements?

Options

  • ADLP Message Action
  • BMatched Content Logging
  • CSecure Reply All
  • DSecure Message Forwarding

Explanation

To allow viewing of email content that violates a DLP policy on a Cisco Secure Email Gateway, the 'Matched Content Logging' setting must be enabled.

Common mistakes.

  • A. DLP Message Action determines the disposition of a violating message (e.g., quarantine, encrypt, drop), but not whether its content is logged for review.
  • C. Secure Reply All is a feature related to email encryption for replies, not to logging the content of DLP policy violations.
  • D. Secure Message Forwarding relates to secure email delivery mechanisms and does not control the logging of violating content for DLP policies.

Concept tested. Cisco Secure Email Gateway DLP logging

Reference. https://www.cisco.com/c/en/us/td/docs/security/ces/esa_cca/ESA-CiscoContentAnalytics/ESA-CiscoContentAnalytics.html

Topics

#Cisco Secure Email Gateway#DLP configuration#Content logging#Email security

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 350-701 Practice