[2021] 300-720 PDF Questions - Perfect Prospect To Go With Actual4Exams Practice Exam
Cisco 300-720 Pdf Questions - Outstanding Practice To your Exam
NEW QUESTION 13
An administrator is trying to enable centralized PVO but receives the error, "Unable to proceed with Centralized Policy, Virus and Outbreak Quarantines configuration as esa1 in Cluster has content filters / DLP actions available at a level different from the cluster level." What is the cause of this error?
- A. DLP is configured at the cluster-level on esa2.
- B. DLP is configured at the domain-level on esa1.
- C. Content filters are configured at the machine-level on esa1.
- D. DLP is not configured on host1.
Answer: D
Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118026-technote- esa-00.html
NEW QUESTION 14
Which two components must be configured to perform DLP scanning? (Choose two.)
- A. Add a DLP policy on the Incoming Mail Policy.
- B. Enable a DLP policy on the DLP Policy Customizations.
- C. Enable a DLP policy on the Outgoing Mail Policy.
- D. Add a DLP policy to the Outgoing Content Filter.
- E. Add a DLP policy to the DLP Policy Manager.
Answer: C,E
NEW QUESTION 15
When DKIM signing is configured, which DNS record must be updated to load the DKIM public signing key?
- A. AAAA record
- B. MX record
- C. TXT record
- D. PTR record
Answer: C
Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/213939-esa- configure-dkim-signing.html
NEW QUESTION 16
Which two certificate authority lists are available in Cisco ESA? (Choose two.)
- A. default
- B. custom
- C. system
- D. user
- E. demo
Answer: B,C
Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/ b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_11_1_chapter_011000.html#task_1194859
NEW QUESTION 17 
Refer to the exhibit. Which configuration on the scan behavior must be updated to allow the attachment to be scanned on the Cisco ESA?
- A. Increase the maximum attachment size to scan to a larger value.
- B. Increase the maximum recursion depth from 5 to a larger value.
- C. Enable assume match pattern if the email was not scanned for any reason.
- D. Add an additional mapping for attachment type for zip files.
Answer: D
NEW QUESTION 18
Which component must be added to the content filter to trigger on failed SPF Verification or DKIM Authentication verdicts?
- A. parameter
- B. condition
- C. response
- D. status
Answer: B
NEW QUESTION 19
Email encryption is configured on a Cisco ESA that uses CRES.
Which action is taken on a message when CRES is unavailable?
- A. It is requeued.
- B. It is dropped and an error message is sent to the sender.
- C. It is encrypted by a Cisco encryption appliance.
- D. It is sent in clear text.
Answer: D
Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/117863- configure-esa-00.html
NEW QUESTION 20
Refer to the exhibit.
Which SPF record is valid for mycompany.com?
- A. v=spf1 a mx ip4:199.209.31.2 -all
- B. v=spf1 a mx ip4:10.1.10.23 -all
- C. v=spf1 a mx ip4:199.209.31.21 -all
- D. v=spf1 a mx ip4:172.16.18.230 -all
Answer: D
NEW QUESTION 21
A company has deployed a new mandate that requires all emails sent externally from the Sales Department to be scanned by DLP for PCI-DSS compliance. A new DLP policy has been created on the Cisco ESA and needs to be assigned to a mail policy named 'Sales' that has yet to be created.
Which mail policy should be created to accomplish this task?
- A. Preliminary Mail Policy
- B. Incoming Mail Flow Policy
- C. Outgoing Mail Flow Policy
- D. Outgoing Mail Policy
Answer: D
NEW QUESTION 22 
Refer to the exhibit. How should this configuration be modified to stop delivering Zero Day malware attacks?
- A. Change Unscannable Action from Deliver As Is to Quarantine.
- B. Apply Prepend on Modify Message Subject under Malware Attachments.
- C. Change File Analysis Pending action from Deliver As Is to Quarantine.
- D. Configure mailbox auto-remediation.
Answer: D
NEW QUESTION 23
Which two query types are available when an LDAP profile is configured? (Choose two.)
- A. proxy consolidation
- B. routing
- C. group
- D. user
- E. recursive
Answer: B,C
Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011010.html
NEW QUESTION 24
What is a valid content filter action?
- A. decrypt on delivery
- B. skip antispam
- C. quarantine
- D. archive
Answer: C
Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01010.html#con_1158022
NEW QUESTION 25
Which two actions are configured on the Cisco ESA to query LDAP servers? (Choose two.)
- A. route
- B. delay
- C. relay
- D. reject
- E. accept
Answer: A,E
Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-0/user_guide_fs/ b_ESA_Admin_Guide_11_0/b_ESA_Admin_Guide_chapter_011010.html
NEW QUESTION 26
What is the default HTTPS port when configuring spam quarantine on Cisco ESA?
- A. 0
- B. 1
- C. 2
- D. 3
Answer: A
Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/ces/user_guide/esa_user_guide_11-1/ b_ESA_Admin_Guide_ces_11_1/b_ESA_Admin_Guide_chapter_011111.pdf
NEW QUESTION 27
Which two features of Cisco Email Security are added to a Sender Group to protect an organization against email threats? (Choose two.)
- A. senderbase reputation filtering
- B. NetFlow
- C. content disarm and reconstruction
- D. geolocation-based filtering
- E. heuristic-based filtering
Answer: A,E
NEW QUESTION 28
Which SMTP extension does Cisco ESA support for email security?
- A. ETRN
- B. STARTTLS
- C. UTF8SMTP
- D. PIPELINING
Answer: B
Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011000.html
NEW QUESTION 29
An engineer is configuring a Cisco ESA for the first time and needs to ensure that any email traffic coming from the internal SMTP servers is relayed out through the Cisco ESA and is tied to the Outgoing Mail Policies.
Which Mail Flow Policy setting should be modified to accomplish this goal?
- A. Exception List
- B. Reverse Connection Verification
- C. Bounce Detection Signing
- D. Connection Behavior
Answer: D
NEW QUESTION 30
What is the default port to deliver emails from the Cisco ESA to the Cisco SMA using the centralized Spam Quarantine?
- A. 0
- B. 1
- C. 2
- D. 3
Answer: B
Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118692-configure- esa-00.html
NEW QUESTION 31
When outbreak filters are configured, which two actions are used to protect users from outbreaks? (Choose two.)
- A. abandon
- B. return
- C. delay
- D. redirect
- E. drop
Answer: C,D
NEW QUESTION 32
What is the default behavior of any listener for TLS communication?
- A. preferred-verify
- B. preferred
- C. off
- D. required
Answer: C
Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118954-config-esa- 00.html
NEW QUESTION 33
......
Online Questions - Outstanding Practice To your 300-720 Exam: https://www.actual4exams.com/300-720-valid-dump.html
Practice To 300-720 - Actual4Exams Remarkable Practice On your Securing Email with Cisco Email Security Appliance Exam: https://drive.google.com/open?id=1HuUGH7n1yN_Y4yzi08U1d-j8faEoiYjW