QUESTION 181
What are two security benefits of an MDM deployment? (Choose two.)
A. distributed software upgrade
B. robust security policy enforcement
C. distributed dashboard
D. on-device content management
E. privacy control checks
Correct Answer: BD
QUESTION 182
What is a benefit of using Cisco FMC over Cisco ASDM?
A. Cisco FMC supports all firewall products whereas Cisco ASDM only supports Cisco ASA devices.
B. Cisco FMC supports pushing configurations to devices while Cisco ASDM does not
C. Cisco FMC provides centralized management while Cisco ASDM does not
D. Cisco FMC uses Java while Cisco ASDM uses HTML5.
Correct Answer: C
QUESTION 183
Which threat intelligence standard contains malware hashes?
A. advanced persistent threat
B. trusted automated exchange of indicator information
C. structured threat information expression
D. open command and control
Correct Answer: C
QUESTION 184
An engineer is configuring Cisco WSA and needs to ensure end clients are protected against DNS spoofing attacks. Which deployment method accomplishes this goal?
A. transparent mode
B. single-context mode
C. explicit forward
D. Web Cache Communication Protocol
Correct Answer: C
QUESTION 185
Which two fields are defined in the NetFlow flow? (Choose two.)
A. class of service bits
B. type of service byte
C. destination port
D. Layer 4 protocol type
E. output logical interface
Correct Answer: BC
QUESTION 186
An engineer is configuring cloud logging on Cisco ASA and needs events to compress. Which component must be configured to accomplish this goal?
A. Cisco analytics
B. SDC event viewer
C. SWC service
D. SDC VM
Correct Answer: D
QUESTION 187
An engineer is configuring a new destination list for Cisco Umbrella. The destination list is in Microsoft Excel format and contains many domains. Which two actions must be taken to ensure a successful implementation? (Choose two.)
A. Limit each file to 50 domains.
B. Convert the Excel file into XML format.
C. Convert the Microsoft Excel file to .TXT.
D. Keep one domain per line.
E. Use a semicolon instead of a comma.
Correct Answer: CD
QUESTION 188
What is a difference between weak passwords and missing encryption?
A. Weak passwords consume bandwidth, and missing encryption allows user information to be hijacked.
B. Weak passwords allow programs to be renamed, and missing encryption hides .exe extensions.
C. Weak passwords cause programs to crash, and missing encryption sends data to a memory location.
D. Weak passwords are guessed easily, and missing encryption allows information to be decrypted.
Correct Answer: D
QUESTION 189
Which type of attack does multifactor authentication help protect against?
A. brute force
B. man-in-the-middle
C. cross-site scripting
D. SQL injection
Correct Answer: A
QUESTION 190
How do the features of DMVPN compare to IPsec VPN?
A. DMVPN supports multiple vendors, and IPsec VPN only supports Cisco products.
B. DMVPN supports non-IP protocols, and IPsec VPN only supports IP protocols.
C. DMVPN uses hub-and-spoke topology, and IPsec VPN uses on-demand spoke topology.
D. DMVPN supports high availability routing, and IPsec VPN supports stateless failover.
Correct Answer: D
QUESTION 191
What is a capability of Cisco Secure Email Gateway compared to Cisco Secure Email Cloud Gateway?
A. Secure Email Gateway is hosted by Cisco by using a local agent deployed onsite, and Secure Email Cloud Gateway is a software as a service.
B. Secure Email Cloud Gateway is an add-on for a web browser, and Secure Email Gateway requires that a server be deployed on-premises.
C. Secure Email Gateway is an add-on for an email server, and Secure Email Cloud Gateway is a cloud-based solution.
D. Secure Email Cloud Gateway is hosted by Cisco using managed services, and Secure Email Gateway is hosted on-premises.
Correct Answer: C
QUESTION 192
What is Cisco Talos?
A. service used to exchange security information between Cisco devices
B. threat intelligence that powers Cisco Secure products and services
C. public collection of threat intelligence feeds
D. public collection of IP address and URL reputations
Correct Answer: B
QUESTION 193
Which email security feature protects users from phishing attempts?
A. anti-malware file scanning
B. malicious signature detection
C. reputation-based filtering
D. intrusion prevention
Correct Answer: C
QUESTION 194
An organization has a requirement to collect full metadata information about the traffic going through their AWS cloud services. They want to use this information for behavior analytics and statistics. Which two actions must be taken to implement this requirement? (Choose two.)
A. Configure Cisco ACI to ingest AWS information.
B. Send VPC Flow Logs to Cisco Stealthwatch Cloud.
C. Configure Cisco Stealthwatch Cloud to ingest AWS information.
D. Configure Cisco Thousand Eyes to ingest AWS information.
E. Send syslog from AWS to Cisco Stealthwatch Cloud.
Correct Answer: BC
QUESTION 195
What is a capability of the Trusted Automated eXchange of Indicator Information standard for security intelligence?
A. integrates threat intelligence with Security Information and Event Management systems
B. enables the consumption of threats from Security Information and Event Management systems
C. manages the flow of threats through Security Information and Event Management systems
D. defines which threats will be reported to Security Information and Event Management systems
Correct Answer: A
QUESTION 196
An engineer is configuring 802.1X authentication on Cisco switches in the network and is using CoA as a mechanism. Which port on the firewall must be opened to allow the CoA traffic to traverse the network?
A. TCP 6514
B. UDP 1700
C. TCP 49
D. UDP 1812
Correct Answer: B
QUESTION 197
What are two DDoS attack categories? (Choose two.)
A. source-based
B. sequential
C. protocol
D. database
E. volume-based
Correct Answer: CE
QUESTION 198
What is the function of Cisco Cloudlock for data security?
A. user and entity behavior analytics
B. controls malicious cloud apps
C. detects anomalies
D. data loss prevention
Correct Answer: D
QUESTION 199
Which Cisco Umbrella security category prevents attackers from exploiting UDP port 53 to send malware to a victim within a company’s headquarters?
A. Malware
B. DNSSEC
C. DNS tunneling VPN
D. Newly Seen Domains
Correct Answer: C
QUESTION 200
A network engineer has been tasked with adding a new medical device to the network. Cisco ISE is being used as the NAC server, and the new device does not have a supplicant available. What must be done in order to securely connect this device to the network?
A. Use MAB with profiling.
B. Use MAB with posture assessment
C. Use 802.1X with profiling.
D. Use 802.1X with posture assessment
Correct Answer: A
We use cookies to improve your experience, including essential cookies required for the website to function. By continuing, you agree to our use of cookies. Learn more.
We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.
Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.
Advertisement cookies are used to provide visitors with customised advertisements based on the pages you visited previously and to analyse the effectiveness of the ad campaigns.
Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.