350-701無料問題集「Cisco Implementing and Operating Cisco Security Core Technologies」

質問 1

An engineer adds a custom detection policy to a Cisco AMP deployment and encounters issues with the configuration. The simple detection mechanism is configured, but the dashboard indicates that the hash is not
64 characters and is non-zero. What is the issue?

（A）The file being uploaded is incompatible with simple detections and must use advanced detections

（B）The hash being uploaded is part of a set in an incorrect format

（C）The engineer is attempting to upload a file instead of a hash

（D）The engineer is attempting to upload a hash created using MD5 instead of SHA-256

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 2

Which IETF attribute is supported for the RADIUS CoA feature?

（A）24 State

（B）30 Calling-Station-ID

（C）81 Message-Authenticator

（D）42 Acct-Session-ID

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 3

An organization has two systems in their DMZ that have an unencrypted link between them for communication.
The organization does not have a defined password policy and uses several default accounts on the systems.
The application used on those systems also have not gone through stringent code reviews. Which vulnerability would help an attacker brute force their way into the systems?

（A）missing encryption

（B）lack of input validation

（C）lack of file permission

（D）weak passwords

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 4

Which solution allows an administrator to provision, monitor, and secure mobile devices on Windows and Mac computers from a centralized dashboard?

（A）Cisco ISE

（B）Cisco Stealthwatch

（C）Cisco AMP for Endpoints

（D）Cisco Umbrella

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 5

Which system facilitates deploying microsegmentation and multi-tenancy services with a policy-based container?

（A）SDLC

（B）Contiv

（C）Docker

（D）Lambda

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 6

An administrator is trying to determine which applications are being used in the network but does not want the network devices to send metadata to Cisco Firepower. Which feature should be used to accomplish this?

（A）Network Discovery

（B）Access Control

（C）NetFlow

（D）Packet Tracer

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 7

Elliptic curve cryptography is a stronger more efficient cryptography method meant to replace which current encryption technology?

（A）AES

（B）RSA

（C）3DES

（D）DES

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 8

Refer to the exhibit.

An administrator is adding a new Cisco FTD device to their network and wants to manage it with Cisco FMC.
The Cisco FTD is not behind a NAT device. Which command is needed to enable this on the Cisco FTD?

（A）configure manager add DONTRESOLVE <registration key> FTD123

（B）configure manager add DONTRESOLVE kregistration key>

（C）configure manager add <FMC IP address> <registration key>

（D）configure manager add <FMC IP address> <registration key> 16

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 9

What are two features of NetFlow flow monitoring? (Choose two)

（A）Does not required packet sampling on interfaces

（B）Include the flow record and the flow importer

（C）Copies all ingress flow information to an interface

（D）Can be used to track multicast, MPLS, or bridged traffic

（E）Can track ingress and egress information

正解：D、E 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 10

What is a function of Cisco AMP for Endpoints?

（A）It protects against web-based attacks

（B）It detects DNS attacks

（C）It blocks email-based attacks

（D）It automates threat responses of an infected host

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 11

A network engineer must configure a Cisco ESA to prompt users to enter two forms of information before gaining access The Cisco ESA must also join a cluster machine using preshared keys What must be configured to meet these requirements?

（A）Enable two-factor authentication through a RADIUS server and then join the cluster by using the Cisco ESA GUI

（B）Enable two-factor authentication through a TACACS+ server and then join the cluster by using the Cisco ESA CLI

（C）Enable two-factor authentication through a RADIUS server and then join the cluster by using the Cisco ESA CLI.

（D）Enable two-factor authentication through a TACACS+ server and then join the cluster by using the Cisco ESA GUI.

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 12

An engineer configures new features within the Cisco Umbrella dashboard and wants to identify and proxy traffic that is categorized as risky domains and may contain safe and malicious content. Which action accomplishes these objectives?

（A）Configure intelligent proxy within Cisco Umbrella to intercept and proxy the requests for only those categories.

（B）Configure URL filtering within Cisco Umbrella to track the URLs and proxy the requests for those categories and below.

（C）Upload the threat intelligence database to Cisco Umbrella for the most current information on reputations and to have the destination lists block them.

（D）Create a new site within Cisco Umbrella to block requests from those categories so they can be sent to the proxy device.

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 13

When using Cisco AMP for Networks which feature copies a file to the Cisco AMP cloud for analysis?

（A）dynamic analysis

（B）sandbox analysis

（C）malware analysis

（D）Spero analysis

正解：D 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 14

Which cloud service offering allows customers to access a web application that is being hosted, managed, and maintained by a cloud service provider?

（A）IaC

（B）SaaS

（C）PaaS

（D）IaaS

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 15

A company is experiencing exfiltration of credit card numbers that are not being stored on-premise. The company needs to be able to protect sensitive data throughout the full environment. Which tool should be used to accomplish this goal?

（A）Cisco ISE

（B）Security Manager

（C）Cloudlock

（D）Web Security Appliance

正解：C 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 16

Drag and drop the VPN functions from the left onto the description on the right.

正解：

Explanation:

質問 17

What is the purpose of the Decrypt for Application Detection feature within the WSA Decryption options?

（A）It provides enhanced HTTPS application detection for AsyncOS.

（B）It alerts users when the WSA decrypts their traffic.

（C）It decrypts HTTPS application traffic for authenticated users.

（D）It decrypts HTTPS application traffic for unauthenticated users.

正解：A 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

質問 18

What is a feature of Cisco NetFlow Secure Event Logging for Cisco ASAs?

（A）Flow-create events are delayed

（B）Advanced NetFlow v9 templates and legacy v5 formatting are supported

（C）Multiple NetFlow collectors are supported

（D）Secure NetFlow connections are optimized for Cisco Prime Infrastructure

正解：B 解答を投票する

解説: (JPNTest メンバーにのみ表示されます)

350-701 無料問題集「Cisco Implementing and Operating Cisco Security Core Technologies」

弊社を連絡する

関連リンク

トップ試験