350-701 Exam Questions
916 real 350-701 exam questions with expert-verified answers and explanations. Page 15 of 19.
- Question #703
Which action adds IOCs to customize detections for a new attack?
Cisco Secure EndpointIOC managementCustom detections - Question #704Content Security
A network administrator received a critical message alert from a Cisco Secure Web Appliance stating that the log partition is at 107% capacity. How does a Cisco Secure Web Applianc...
Cisco SWALog partitionFull capacity behaviorSystem response - Question #705Secure Network Access
A network administrator has configured TACACS on a network device using the key Cisc0466974274 for authentication purposes. However, users are unable to authenticate. TACACS server...
TACACS+AuthenticationShared secretTroubleshooting - Question #706
How do the features of DMVPN compare to IPsec VPN?
DMVPNIPsec VPNVPN comparison - Question #707
What has driven an increase in the need for endpoint-based security?
Endpoint securityBYODRemote work security - Question #708Network Security / Firewall Technologies - Understanding routed vs. transparent (bridged) firewall deployment modes and their respective capabilities and limitations (aligned with Cisco CCNP Security / CCNA Security or equivalent certification objectives)
Drag and Drop Question Drag and drop the firewall capabilities from the left onto the corresponding firewall deployment modes on the right. Answer:
Firewall Deployment ModesTransparent ModeRouted ModeNetwork Security Architecture - Question #709
An engineer must register a fixed network on a Cisco Umbrella platform. Which two actions must be performed when adding a new public IP address? (Choose two.)
Cisco Umbrella configurationUmbrella network registrationDNS server configuration - Question #710Secure Network Access, Visibility, and Enforcement
Which action configures the iEEE 802.1X Flexible Authentication feature to support Layer 3 authentication mechanisms?
802.1X Flexible AuthenticationLayer 3 AuthenticationMAC Authentication Bypass (MAB) - Question #711
Which API technology with SDN architecture is used to communicate with a controller and network devices such as routers and switches?
SDN architectureSouthbound APIsNetwork programmability - Question #712Threat Control
Which solution should a network administrator deploy to protect a webserver from SQL injection attacks?
SQL injection protectionWeb Application FirewallApplication security - Question #713
What is a capability of Cisco AVC?
Cisco AVCapplication bandwidth enforcement - Question #714Content Security
Which parameter must be set for an invalid certificate handling on a Cisco Seucure Web Appliance with a policy for HTTPS traffic?
Cisco WSASSL decryptionCertificate handling - Question #715Network Security
A networking team must harden an organization's network from VLAN hopping attacks. The team disables Dynamic Trunking Protocol and puts any unused ports in an unused VLAN. A trunk...
VLAN hoppingTrunk port securityNative VLAN hardening - Question #716Network Security
A network engineer configures a site-to-site VPN with a colleague. During testing, the engineer discovers that only phase 1 is up, and application traffic cannot pass. Which config...
site-to-site VPNVPN troubleshootingIPsec Phase 2encryption domain - Question #717
An engineer is deploying a Cisco Email Security Appliance and must configure a sender group that decides which mail policy will process the mail. The configuration must accept inco...
Cisco Secure Email GatewayRecipient Access Table (RAT)Email policy enforcementMail relay configuration - Question #718Network Management and Monitoring - Configure and verify device management protocols including SNMPv3 with authentication and security levels (relevant to CCNP ENCOR / CCNA Network Management domain)
Refer to the exhibit. A network engineer wants to reduce the operational costs of SNMPv3 by using trapping instead of polling. Which code snippet completes the configuration to ena...
SNMPv3Network MonitoringSNMP TrapsCisco IOS Configuration - Question #719Threats, Attacks, and Vulnerabilities
What is the definition of phishing?
PhishingSocial EngineeringEmail Attack - Question #720Endpoint Security
What is capability of EPP compared to EDR?
EPPEDREndpoint ProtectionEndpoint Security - Question #721
What is considered a cloud data breach?
Data breachCloud securitySecurity incidents - Question #722Security Concepts
Which type of attack does multifactor authentication help protect against?
Multifactor authenticationBrute forceAuthentication security - Question #723
An engineer must use Cisco Secure Firewall Management Center to send Cisco Secure Firewall Threat Defense events to the cloud. The engineer performed these actions already: - FTD d...
Cisco FMCCisco FTDCloud event forwarding - Question #724
What is a benefit of using Cisco AVC (Application Visibility and Control) for application control?
Cisco AVCApplication Control - Question #725Security Concepts
What is the purpose of CA in a PKI?
PKICertificate AuthorityDigital Certificates - Question #726Secure Network Access, Visibility, and Enforcement
An engineer is onboarding a teleworker to Cisco Umbrella. After the worker's home network identity is configured, which additional action must be taken to complete the network regi...
Cisco UmbrellaDNS securityNetwork registrationTeleworker onboarding - Question #727
What must be disabled on a Cisco Secure Web Appliance to ensure HTTPS traffic with a good reputation score bypasses decryption?
Cisco SWAHTTPS decryptionWeb proxy policiesDecryption bypass - Question #728Network Automation and Programmability - Use Cisco DNA Center APIs to manage network configuration templates and provisioning workflows (ENCOR/DevNet Associate)
A network engineer must use the Cisco DNA Center API to create a configuration template to provision a device. Which two method and endpoint pairs must be used to create the templa...
Cisco DNA Center APINetwork AutomationREST APIsTemplate Programmer - Question #729
Which two facts must be considered when deciding whether to deploy the Cisco Secure Web Appliance in Standard mode, Hybrid Web Security mode, or Cloud Web Security Connector mode?...
Cisco Secure Web ApplianceSWA deployment modesWeb proxy capabilitiesLayer 4 traffic monitoring - Question #730
An engineer must modify an existing remote access VPN using a Cisco AnyConnect Secure Mobility client solution and a Cisco Secure Firewall. Currently, all the traffic generated by...
Cisco AnyConnectRemote Access VPNSplit TunnelingGroup Policy - Question #731Content Security
An engineer must configure a Cisco Secure Email Gateway to use DLP for a company. The company also wants to see the content of emails that violate the DLP policy. Which configurati...
Cisco Secure Email GatewayDLP configurationContent loggingEmail security - Question #732
Which email security feature protects users from phishing attempts?
email securityphishing protectionreputation filtering - Question #733
Refer to the exhibit. Which protocol should be used to encrypt a client connection that signs in to the router remotely to make common configuration changes?
SSHRemote managementNetwork device configurationSecure access - Question #734Secure Network Access, Visibility, and Enforcement
An organization is trying to implement micro-segmentation on the network and wants to be able to gain visibility on the applications within the network. The solution must be able t...
micro-segmentationapplication visibilitynetwork complianceCisco Secure Workload - Question #735Network Security
How does a Cisco Secure Firewall help to lower the risk of exfiltration techniques that steal customer data?
Data ExfiltrationDNS SecurityFirewall InspectionApplication Layer Security - Question #736Automation and Orchestration
Refer to the exhibit. Which task is the Python script performing by using the Cisco Umbrella API?
Python ScriptingCisco Umbrella APIDomain ReputationAPI Automation - Question #737Network Fundamentals – Explain the function of network components and use IOS commands to identify and manage directly connected Cisco devices using Cisco Discovery Protocol (CDP)
Refer to the exhibit. A network engineer must implement a new multidevice management solution and must retrieve information about all the Cisco devices that are directly attached t...
CDPNetwork DiscoveryIOS CommandsDevice Management - Question #738Endpoint Security and Secure Network Access
Refer to the exhibit. Network access control is implemented on the LAN and an engineer must now configure the switch port level so that users with new corporate devices can connect...
Cisco NAC802.1X authenticationSwitch port violation actions - Question #739
What is a difference between an EPP solution and an EDR solution?
EPPEDREndpoint security - Question #740
A company is planning to deploy an application to a secure cloud environment. The solution must meet these requirements: - A third-party must control the underlying cloud infrastru...
Cloud service modelsShared responsibility modelPaaS - Question #741
An organization plans to upgrade its current email security solutions, and an engineer must deploy Cisco Secure Email. The requirements for the upgrade are: - Implement Data Loss P...
Cisco Secure Email licensingData Loss PreventionEmail encryptionEmail Gateway integration - Question #742
Which Cisco ISE service checks the state of all the endpoints connecting to a network for compliance with corporate security policies?
Cisco ISEEndpoint compliancePosture service - Question #743
What is a difference between an SQL injection and a cross-site scripting attack?
SQL injectionCross-site scripting (XSS)Web application vulnerabilities - Question #744
What is a capability of Cisco Secure Email Cloud Gateway compared to Cisco Secure Email Gateway?
Cisco Secure EmailCloud Email SecurityEmail GatewayInfrastructure Deployment - Question #745Network Security
An engineer must prevent communication with a cloud application being decrypted. The application database uses AES-256 with SHA-512 and web access to the application uses HTTPS wit...
SSL/TLS protocolsHTTPS securityDigital certificatesTransport layer security - Question #746Endpoint Protection and Detection
Which action blocks specific IP addresses whenever a computer with Cisco Secure Endpoint installed connects to the network?
Cisco Secure EndpointIP blockingEndpoint security policyNetwork access control - Question #747Content Security
An organization has had some malware infections recently and the management team wants to use Cisco Secure Firewall to enforce file policies to prevent malicious files from being d...
Cisco Secure FirewallFile PoliciesMalware PreventionThreat Detection - Question #748Securing the Cloud
Which Cisco solution integrates industry-leading artificial intelligence and machine learning analytics and an assurance database to review the security posture and maintain visibi...
Cisco Secure WorkloadCloud SecurityAI/ML AnalyticsSecurity Posture - Question #749Securing the Cloud
An engineer is configuring cloud logging on Cisco ASA and needs events to compress. Which component must be configured to accomplish this goal?
Cisco ASACloud LoggingSecure Device ConnectorLog Compression - Question #750Securing the Cloud
When an assessment of cloud services and applications is conducted, which tool is used to show user activity and data usage across the applications?
Cloud VisibilityCloudLock CASBUser Activity MonitoringCloud Security - Question #751
An engineer implements Cisco CloudLock to secure a Microsoft Office 365 application in the cloud. The engineer must configure protection for corporate files in case of any incident...
- Question #752Network Security
Which common exploit method is TLS 1.3 designed to prevent?
TLS 1.3Man-in-the-Middle AttacksNetwork Security ProtocolsEncryption