Instant Access Cisco.350-701.v2022-08-21.q531 Actual Practice Test Engine for Free (Page 47)

Question 226

Which attack is preventable by Cisco ESA but not by the Cisco WSA?

A.buffer overflow
B.DoS
C.SQL injection
D.phishing

Question 227

A network engineer is configuring DMVPN and entered the crypto isakmp key cisc0380739941 address 0.0.0.0 command on host A.
The tunnel is not being established to hostB. What action is needed to authenticate the VPN?

A.Change isakmp to ikev2 in the command on hostA.
B.Enter the same command on hostB.
C.Change the password on hostA to the default password.
D.Enter the command with a different password on hostB.

Question 228

A Cisco ESA administrator has been tasked with configuring the Cisco ESA to ensure there are no viruses before quarantined emails are delivered. In addition, delivery of mail from known bad mail servers must be prevented Which two actions must be taken in order to meet these requirements? (Choose two.)

A.A
B.B
C.C
D.D
E.E

Question 229

Which benefit is provided by ensuring that an endpoint is compliant with a posture policy configured in Cisco ISE?

A.It allows the endpoint to authenticate with 802.1xor MAB.
B.It verifies that the endpoint has the latest Microsoft security patches installed.
C.It allows CoA to be applied if the endpoint status is compliant.
D.It adds endpoints to identity groups dynamically.

Question 230

An organization wants to secure data in a cloud environment. Its security model requires that all users be authenticated and authorized. Security configuration and posture must be continuously validated before access is granted or maintained to applications and dat a. There is also a need to allow certain application traffic and deny all other traffic by default. Which technology must be used to implement these requirements?

A.Virtual routing and forwarding
B.Microsegmentation
C.Access control policy
D.Virtual LAN

Question 226

Question 227

Question 228

Question 229

Question 230

Download PDF File