350-701 Practice Questions

A.  

Cisco Umbrella

B.  

Cisco ISE

C.  

Cisco CloudLock

D.  

Cisco Tetration

A.  

IKEv1

B.  

AH

C.  

ESP

D.  

IKEv2

A.  

SNORT

B.  

NetFlow

C.  

SNMP

D.  

802.1X

A.  

It uses the POST HTTP method to obtain a username and password to be used for authentication.

B.  

It uses the POST HTTP method to obtain a token to be used for authentication.

C.  

It uses the GET HTTP method to obtain a token to be used for authentication.

D.  

It uses the GET HTTP method to obtain a username and password to be used for authentication

A.  

Create a Cisco pxGrid connection to NIST to import this information into the security products for policy use

B.  

Create an automated download of the Internet Storm Center intelligence feed into the Cisco FTD and Cisco WSA databases to tie to the dynamic access control policies.

C.  

Download the threat intelligence feed from the IETF and import it into the Cisco FTD and Cisco WSA databases

D.  

Configure the integrations with Talos Intelligence to take advantage of the threat intelligence that it provides.

A.  

Multifactor authentication methods of authentication are never compromised

B.  

Biometrics authentication leads to the need for multifactor authentication due to its ability to be hacked easily

C.  

Multifactor authentication does not require any piece of evidence for an authentication mechanism

D.  

Single methods of authentication can be compromised more easily than multifactor authentication

A.  

To protect the endpoint against malicious file transfers

B.  

To ensure that assets are secure from malicious links on and off the corporate network

C.  

To establish secure VPN connectivity to the corporate network

D.  

To enforce posture compliance and mandatory software

A.  

smurf

B.  

bluesnarfing

C.  

MAC spoofing

D.  

IP spoofing

A.  

GETVPN reduces latency and provides encryption over MPLS without the use of a central hub

B.  

GETVPN provides key management and security association management

C.  

GETVPN is based on IKEv2 and does not support IKEv1

D.  

GETVPN is used to build a VPN network with multiple sites without having to statically configure all devices

A.  

Configure a posture policy in Cisco Identity Services Engine to install the MS17-010 patch before allowingaccess on the network.

B.  

Set up a profiling policy in Cisco Identity Service Engine to check and endpoint patch level before allowingaccess on the network.

C.  

Configure a posture policy in Cisco Identity Services Engine to check that an endpoint patch level is metbefore allowing access on the network.

D.  

Configure endpoint firewall policies to stop the exploit traffic from being allowed to run and replicatethroughout the network.

E.  

Set up a well-defined endpoint patching strategy to ensure that endpoints have critical vulnerabilities patched in a timely fashion.

A.  

Certificate Trust List

B.  

Endpoint Trust List

C.  

Enterprise Proxy Service

D.  

Secured Collaboration Proxy

A.  

container orchestration

B.  

software-defined access

C.  

microservicing

D.  

microsegmentation

A.  

CD

B.  

EP

C.  

CI

D.  

QA

A.  

client

B.  

server

C.  

controller

D.  

publisher

A.  

local WebAuth

B.  

central WebAuth

C.  

null WebAuth

D.  

guest

E.  

dual