Updated Aug-2021 Exam Engine or PDF for the Cisco 300-720 test to help you quickly prepare for the Cisco exam! [Q46-Q71]

Updated Aug-2021 Test Engine or PDF for the Cisco 300-720 test to help you quickly prepare for the Cisco exam!

Full 300-720 Practice Test and 92 unique questions with explanations waiting just for you, get it now!

NEW QUESTION 46
An administrator is trying to enable centralized PVO but receives the error, "Unable to proceed with Centralized Policy, Virus and Outbreak Quarantines configuration as esa1 in Cluster has content filters / DLP actions available at a level different from the cluster level." What is the cause of this error?

• A. DLP is configured at the cluster-level on esa2.
• B. DLP is configured at the domain-level on esa1.
• C. Content filters are configured at the machine-level on esa1.
• D. DLP is not configured on host1.

Answer: D

 

NEW QUESTION 47
Which two features of Cisco Email Security are added to a Sender Group to protect an organization against email threats? (Choose two.)

• A. senderbase reputation filtering
• B. NetFlow
• C. content disarm and reconstruction
• D. geolocation-based filtering
• E. heuristic-based filtering

Answer: A,E

 

NEW QUESTION 48
Which process is skipped when an email is received from safedomain.com, which is on the safelist?

• A. message filter
• B. antivirus scanning
• C. antispam scanning
• D. outbreak filter

Answer: A

Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/214269-filter-to- handle-messages-that-skipped-d.html

 

NEW QUESTION 49
What is a benefit of implementing URL filtering on the Cisco ESA?

• A. blacklists spam
• B. removes threats from malicious URLs
• C. enhances reputation against malicious URLs
• D. provides URL reputation protection

Answer: D

 

NEW QUESTION 50
Email encryption is configured on a Cisco ESA that uses CRES.
Which action is taken on a message when CRES is unavailable?

• A. It is requeued.
• B. It is dropped and an error message is sent to the sender.
• C. It is encrypted by a Cisco encryption appliance.
• D. It is sent in clear text.

Answer: D

Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/117863-configure- esa-00.html

 

NEW QUESTION 51
An email containing a URL passes through the Cisco ESA that has content filtering disabled for all mail policies. The sender is [email protected], the recipients are [email protected], [email protected], [email protected], and [email protected]. The subject of the email is Test Document395898847. An administrator wants to add a policy to ensure that the Cisco ESA evaluates the web reputation score before permitting this email.
Which two criteria must be used by the administrator to achieve this? (Choose two.)

• A. Sender matches test1.com
• B. Email does not match [email protected]
• C. Date and time of email
• D. Email body contains a URL
• E. Subject contains Test Document"

Answer: D,E

 

NEW QUESTION 52
Which action on the Cisco ESA provides direct access to view the safelist/blocklist?

• A. Show the SLBL cache on the CLI.
• B. Monitor Incoming/Outgoing Listener.
• C. Debug the mail flow policy.
• D. Export the SLBL to a .csv file.

Answer: D

Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/117922-technote- esa-00.html

 

NEW QUESTION 53
Which two components form the graymail management solution in Cisco ESA? (Choose two.)

• A. secure subscribe option for end users
• B. improved mail efficacy
• C. integrated graymail scanning engine
• D. uniform unsubscription management interface for end users
• E. cloud-based unsubscribe service

Answer: C,E

 

NEW QUESTION 54
Which action on the Cisco ESA provides direct access to view the safelist/blocklist?

• A. Show the SLBL cache on the CLI.
• B. Monitor Incoming/Outgoing Listener.
• C. Debug the mail flow policy.
• D. Export the SLBL to a .csv file.

Answer: D

Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/117922-technote- esa-00.html

 

NEW QUESTION 55
Which action is a valid fallback when a client certificate is unavailable during SMTP authentication on Cisco ESA?

• A. LDAP BIND
• B. SMTP AUTH
• C. SMTP TLS
• D. LDAP Query

Answer: B

 

NEW QUESTION 56
Drag and drop the AsyncOS methods for performing DMARC verification from the left into the correct order on the right.

Answer:

Explanation:

Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/b_ESA_Admin_Guide_11_1/ b_ESA_Admin_Guide_11_1_chapter_010101.html

 

NEW QUESTION 57
Which SMTP extension does Cisco ESA support for email security?

• A. ETRN
• B. STARTTLS
• C. UTF8SMTP
• D. PIPELINING

Answer: B

 

NEW QUESTION 58
An administrator identifies that, over the past week, the Cisco ESA is receiving many emails from certain senders and domains which are being consistently quarantined. The administrator wants to ensure that these senders and domain are unable to send anymore emails.
Which feature on Cisco ESA should be used to achieve this?

• A. incoming mail policies
• B. safelist
• C. blocklist
• D. S/MIME Sending Profile

Answer: A

 

NEW QUESTION 59
What is the default port to deliver emails from the Cisco ESA to the Cisco SMA using the centralized Spam Quarantine?

• A. 0
• B. 1
• C. 2
• D. 3

Answer: B

Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118692-configure- esa-00.html

 

NEW QUESTION 60
Which two statements about configuring message filters within the Cisco ESA are true? (Choose two.)

• A. The filterconfig command executed from the CLI is used to configure message filters.
• B. Message filters can be configured only from the CLI.
• C. Message filters configuration within the web user interface is located within Incoming Content Filters.
• D. The filters command executed from the CLI is used to configure the message filters.
• E. Message filters can be configured only from the web user interface.

Answer: B,D

Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/213940-esa-using-a- message-filter-to-take-act.html

 

NEW QUESTION 61
Which setting affects the aggressiveness of spam detection?

• A. spam threshold
• B. spam timeout
• C. maximum depth of recursion scan
• D. protection level

Answer: A

Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118220-technote- esa-00.html

 

NEW QUESTION 62
Which benefit does enabling external spam quarantine on Cisco SMA provide?

• A. ability to scan messages by using two engines to increase a catch rate
• B. access to the spam quarantine interface on which a user can release, duplicate, or delete
• C. ability to back up spam quarantine from multiple Cisco ESAs to one central console
• D. ability to consolidate spam quarantine data from multiple Cisco ESA to one central console

Answer: D

 

NEW QUESTION 63
Which two components must be configured to perform DLP scanning? (Choose two.)

• A. Add a DLP policy on the Incoming Mail Policy.
• B. Enable a DLP policy on the DLP Policy Customizations.
• C. Enable a DLP policy on the Outgoing Mail Policy.
• D. Add a DLP policy to the Outgoing Content Filter.
• E. Add a DLP policy to the DLP Policy Manager.

Answer: C,E

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/ b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_010001.html

 

NEW QUESTION 64
Which SMTP extension does Cisco ESA support for email security?

• A. ETRN
• B. STARTTLS
• C. UTF8SMTP
• D. PIPELINING

Answer: B

Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011000.html

 

NEW QUESTION 65
An organization wants to use DMARC to improve its brand reputation by leveraging DNS records.
Which two email authentication mechanisms are utilized during this process? (Choose two.)

• A. PKI
• B. DKIM
• C. DSTP
• D. TLS

Answer: C,D

 

NEW QUESTION 66
Which two components must be configured to perform DLP scanning? (Choose two.)

• A. Add a DLP policy on the Incoming Mail Policy.
• B. Enable a DLP policy on the DLP Policy Customizations.
• C. Enable a DLP policy on the Outgoing Mail Policy.
• D. Add a DLP policy to the Outgoing Content Filter.
• E. Add a DLP policy to the DLP Policy Manager.

Answer: C,E

 

NEW QUESTION 67
Which action is a valid fallback when a client certificate is unavailable during SMTP authentication on Cisco ESA?

• A. LDAP BIND
• B. SMTP AUTH
• C. SMTP TLS
• D. LDAP Query

Answer: B

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011011.html

 

NEW QUESTION 68
Which feature utilizes sensor information obtained from Talos intelligence to filter email servers connecting into the Cisco ESA?

• A. SenderBase Reputation Filtering
• B. SpamCop Reputation Filtering
• C. Connection Reputation Filtering
• D. Talos Reputation Filtering

Answer: A

 

NEW QUESTION 69
What is the default behavior of any listener for TLS communication?

• A. preferred-verify
• B. preferred
• C. off
• D. required

Answer: C

Explanation:
Reference:
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118954-config-esa- 00.html

 

NEW QUESTION 70
Which setting affects the aggressiveness of spam detection?

• A. spam threshold
• B. spam timeout
• C. maximum depth of recursion scan
• D. protection level

Answer: A

 

NEW QUESTION 71
......

Get Latest 300-720 Dumps Exam Questions: https://drive.google.com/open?id=19B8Yj6LQRHxkqtPEJ-VBmuzg2qKvly3-

Full 300-720 Practice Test and 92 unique questions with explanations waiting just for you, get it now: https://www.realvce.com/300-720_free-dumps.html