100% Reliable 300-720 Exam Dumps Test Pdf Exam Material [Q42-Q62]

100% Reliable Microsoft 300-720 Exam Dumps Test Pdf Exam Material

Based on Official Syllabus Topics of Actual Cisco 300-720 Exam

However, the must-have skills for a learner intending to attend the course include services for TCP/IP, including DNS, SNMP, DNS, FTP, SSH, HTTP, as well as HTTPS. Then, being experienced in IP routing is another requirement for the final test. Once you have completed the course for 300-720 exam, you ought to have achieved the following objectives:

• Preventing loss of data;
• Using content filters;
• Authenticating SMTP sessions;
• Performing LDAP queries;
• Authenticating Emails;
• Enforcing Email policies using messaging filters;
• Email encryption;
• Controlling domains for the sender as well as the recipient;
• Monitoring spam using anti-spam and Talos SenderBase;
• Testing and troubleshooting.
• Describing and using the Cisco ESA;
• Using anti-virus as well as outbreak filters;
• Applying system quarantines as well as delivery methods;

To get more details visit:

Cisco 300-720 Exam Reference

 

NEW QUESTION 42
What must be configured to allow the Cisco ESA to encrypt an email using the Cisco Registered Envelope Service?

• A. provisioned email encryption profile
• B. message encryption from the mail flow policies with "CRES" selected
• C. content filter to forward the email to the Cisco Registered Envelope server
• D. message encryption from a content filter that select "Message Encryption" over TLS

Answer: D

Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_010010.html

 

NEW QUESTION 43
When email authentication is configured on Cisco ESA, which two key types should be selected on the signing profile? (Choose two.)

• A. Public Keys
• B. Symmetric Keys
• C. DKIM
• D. Private Keys
• E. Domain Keys

Answer: C,E

 

NEW QUESTION 44
Which two query types are available when an LDAP profile is configured? (Choose two.)

• A. proxy consolidation
• B. recursive
• C. routing
• D. user
• E. group

Answer: C,E

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011010.html

 

NEW QUESTION 45
When the Cisco ESA is configured to perform antivirus scanning, what is the default timeout value?

• A. 30 seconds
• B. 60 seconds
• C. 120 seconds
• D. 90 seconds

Answer: B

 

NEW QUESTION 46
An Encryption Profile has been set up on the Cisco ESA.
Drag and drop the steps from the left for creating an outgoing content filter to encrypt emails that contains the subject "Secure:" into the correct order on the right.

Answer:

Explanation:

Reference:
https://community.cisco.com/t5/email-security/keyword-in-subject-line-to-encrypt-message/td-p/2441383

 

NEW QUESTION 47
Which method enables an engineer to deliver a flagged message to a specific virtual gateway address in the most flexible way?

• A. Set up the interface group with the flag.
• B. Issue the altsrchost command.
• C. Apply a filter on the message.
• D. Map the envelope sender address to the host.

Answer: B

Explanation:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-
1/user_guide/b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_01000.html#con_1133
810

 

NEW QUESTION 48
What must be configured to allow the Cisco ESA to encrypt an email using the Cisco Registered Envelope Service?

• A. provisioned email encryption profile
• B. message encryption from the mail flow policies with "CRES" selected
• C. content filter to forward the email to the Cisco Registered Envelope server
• D. message encryption from a content filter that select "Message Encryption" over TLS

Answer: D

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_010010.html

 

NEW QUESTION 49
Which type of attack is prevented by configuring file reputation filtering and file analysis features?

• A. zero-day
• B. denial of service
• C. backscatter
• D. phishing

Answer: A

 

NEW QUESTION 50
Email encryption is configured on a Cisco ESA that uses CRES.
Which action is taken on a message when CRES is unavailable?

• A. It is requeued.
• B. It is encrypted by a Cisco encryption appliance.
• C. It is sent in clear text.
• D. It is dropped and an error message is sent to the sender.

Answer: C

Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/117863- configure-esa-00.html

 

NEW QUESTION 51
What is the order of virus scanning when multilayer antivirus scanning is configured?

• A. The McAfee engine scans for viruses first and the default engine scans for viruses second.
• B. The Sophos engine scans for viruses first and the McAfee engine scans for viruses second.
• C. The default engine scans for viruses first and the McAfee engine scans for viruses second.
• D. The McAfee engine scans for viruses first and the Sophos engine scans for viruses second.

Answer: A

Explanation:
If you configure multi-layer anti-virus scanning, the Cisco appliance performs virus scanning with the McAfee engine first and the Sophos engine second. It scans messages using both engines, unless the McAfee engine detects a virus. If the McAfee engine detects a virus, the Cisco appliance performs the anti-virus actions (repairing, quarantining, etc.) defined for the mail policy.
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01011.html

 

NEW QUESTION 52
Which two configurations are used on multiple LDAP servers to connect with Cisco ESA? (Choose two.)

• A. active-active
• B. load balancing
• C. active-standby
• D. failover
• E. SLA monitor

Answer: B,D

Explanation:
You can enter multiple host names to configure the LDAP servers for failover or load-balancing. Separate multiple entries with commas.
Reference:
https://www.cisco.com/c/en/us/td/docs/security/ces/user_guide/sma_user_guide/ b_SMA_Admin_Guide_ces_11/b_SMA_Admin_Guide_chapter_01010.html

 

NEW QUESTION 53
Which type of attack is prevented by configuring file reputation filtering and file analysis features?

• A. zero-day
• B. denial of service
• C. backscatter
• D. phishing

Answer: A

Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_010000.html#con_1809885

 

NEW QUESTION 54
When DKIM signing is configured, which DNS record must be updated to load the DKIM public signing key?

• A. PTR record
• B. MX record
• C. TXT record
• D. AAAA record

Answer: C

 

NEW QUESTION 55
When the Spam Quarantine is configured on the Cisco ESA, what validates end-users via LDAP during login to the End-User Quarantine?

• A. Spam Quarantine External Authentication Query
• B. Spam Quarantine Alias Consolidation Query
• C. Spam Quarantine End-User Authentication Query
• D. Enabling the End-User Safelist/Blocklist feature

Answer: C

 

NEW QUESTION 56
When URL logging is configured on a Cisco ESA, which feature must be enabled first?

• A. senderbase reputation filter
• B. virus outbreak filter
• C. antispam
• D. antivirus

Answer: B

Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118775-technote- esa-00.html (note under enable url filtering)

 

NEW QUESTION 57
What is the maximum message size that can be configured for encryption on the Cisco ESA?

• A. 20 MB
• B. 30 MB
• C. 25 MB
• D. 15 MB

Answer: C

Explanation:

https://www.cisco.com/c/en/us/td/docs/security/esa/esa13-
0/user_guide/b_ESA_Admin_Guide_13-0.pdf P.580

 

NEW QUESTION 58
When configuring CRES, where do you enable read receipts?

• A. In the content filter action menu
• B. In the mail policy
• C. In the encryption profile
• D. In the content filter condition menu

Answer: C

 

NEW QUESTION 59
An engineer is testing mail flow on a new Cisco ESA and notices that messages for domain abc.com are stuck in the delivery queue. Upon further investigation, the engineer notices that the messages pending delivery are destined for 192.168.1.11, when they should instead be routed to
192.168.1.10.
What configuration change needed to address this issue?

• A. Modify the Routing Tables and add a route for IP address to 192.168.1.10.
• B. Add an address list for domain abc.com.
• C. Modify Destination Controls entry for the domain abc.com.
• D. Modify the SMTP route for the domain and change the IP address to 192.168.1.10.

Answer: D

Explanation:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118136-qanda-esa-
00.html

 

NEW QUESTION 60
What are two prerequisites for implementing undesirable URL protection in Cisco ESA? (Choose two.)

• A. Enable email relay.
• B. Enable outbreak filters.
• C. Enable antivirus scanning.
• D. Enable antispam scanning.
• E. Enable port bouncing.

Answer: B,D

 

NEW QUESTION 61
An analyst creates a new content dictionary to use with Forged Email Detection.
Which entry will be added into the dictionary?

• A. ^Alpha\ Beta$
• B. mycompany.com
• C. [email protected]
• D. Alpha Beta

Answer: B

Explanation:
Reference:
https://www.cisco.com/c/en/us/products/collateral/security/email-security-appliance/ whitepaper_C11-737596.html

 

NEW QUESTION 62
......

Free 300-720 Dumps are Available for Instant Access: https://www.actual4exams.com/300-720-valid-dump.html

View All 300-720 Actual Exam Questions Answers and Explanations for Free: https://drive.google.com/open?id=1HuUGH7n1yN_Y4yzi08U1d-j8faEoiYjW