300-720 PDF Dumps May 16, 2024 Recently Updated Questions [Q88-Q109]

Share

300-720 PDF Dumps | May 16, 2024 Recently Updated Questions

300-720 Exam Questions – Valid 300-720 Dumps Pdf


Cisco 300-720 is a certification exam that focuses on securing email with Cisco Email Security Appliance. 300-720 exam is designed to test the candidate's knowledge and skills in implementing and managing Cisco Email Security Appliance, which is a powerful tool in protecting an organization's email system against spam, viruses, phishing attacks, and other cyber threats.


Conclusion

Being an Email security specialist, you need to ensure that you have the relevant skills to safeguard your organization’s email systems. The Cisco 300-720 is a test for these skills and it is there to evaluate how good you are with the associated skills. By taking and passing this exam, you will prove to your current and prospective employers that you are well versed with your job and the use of Cisco ESA. Training with an official course and learning with self-study materials like guides will bring more value to your preparation and success in the actual evaluation.


Cisco 300-720 exam, also known as Securing Email with Cisco Email Security Appliance, is designed to test the knowledge and skills of IT professionals in the area of email security. 300-720 exam is intended for professionals who have experience working with Cisco Email Security Appliance and are responsible for securing email systems and networks.

 

NEW QUESTION # 88
An administrator is managing multiple Cisco ESA devices and wants to view the quarantine emails from all devices in a central location.
How is this accomplished?

  • A. Disable the local quarantine before sending SPAM to the external quarantine.
  • B. Configure a user policy to determine whether the message is sent to the local or external quarantine.
  • C. Configure a mail policy to determine whether the message is sent to the local or external quarantine.
  • D. Disable the VOF feature before sending SPAM to the external quarantine.

Answer: A

Explanation:
Disabling the Local Spam Quarantine to Activate the External Quarantine If you were using a local spam quarantine before enabling an external spam quarantine, you must disable the local quarantine in order to send messages to the external quarantine. https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_0101010.html?bookSearch=true#con_1172419


NEW QUESTION # 89
What is the default behavior of any listener for TLS communication?

  • A. preferred-verify
  • B. required
  • C. preferred
  • D. off

Answer: D


NEW QUESTION # 90
An Encryption Profile has been set up on the Cisco ESA.
Drag and drop the steps from the left for creating an outgoing content filter to encrypt emails that contains the subject "Secure:" into the correct order on the right.

Answer:

Explanation:

Reference:
https://community.cisco.com/t5/email-security/keyword-in-subject-line-to-encrypt-message/td-p/2441383


NEW QUESTION # 91
Spammers routinely try to send emails with the recipient field filled with a list of all possible combinations of letters and numbers. These combinations, appended with a company domain name are malicious attempts at learning all possible valid email addresses. Which action must be taken on a Cisco Secure Email Gateway to prevent this from occurring?

  • A. Enable end user safelist features
  • B. Quarantine external authentication queries.
  • C. Select the SMTP Authentication Query checkbox
  • D. Perform LDAP acceptance validation.

Answer: D

Explanation:
LDAP acceptance validation is a feature that allows the Cisco Secure Email Gateway to check if the recipient address of an incoming message exists in an LDAP directory before accepting it. This feature can help prevent spammers from sending emails with invalid recipient addresses and reduce the load on the appliance2. Reference = User Guide for AsyncOS 12.0 for Cisco Email Security Appliances - GD (General Deployment) - Configuring LDAP Queries [Cisco Secure Email Gateway] - Cisco


NEW QUESTION # 92
What are two primary components of content filters? (Choose two.)

  • A. actions
  • B. policies
  • C. content
  • D. subject
  • E. conditions

Answer: A,E


NEW QUESTION # 93
Which process is skipped when an email is received from safedomain.com, which is on the safelist?

  • A. antivirus scanning
  • B. outbreak filter
  • C. message filter
  • D. antispam scanning

Answer: C


NEW QUESTION # 94
What are organizations trying to address when implementing a SPAM quarantine?

  • A. false positives
  • B. false negatives
  • C. true negatives
  • D. true positives

Answer: A


NEW QUESTION # 95
When virtual gateways are configured, which two distinct attributes are allocated to each virtual gateway address? (Choose two.)

  • A. IP address
  • B. external spam quarantine
  • C. DNS server address
  • D. DHCP server address
  • E. domain

Answer: A,E

Explanation:
Virtual gateways are a feature that allows Cisco ESA to host multiple email domains on a single physical interface, using different IP addresses and hostnames for each domain.
When virtual gateways are configured, two distinct attributes are allocated to each virtual gateway address:
Domain, which is the email domain name that is associated with the virtual gateway address, such as mycompany.com or mydomain.com.
IP address, which is the IPv4 or IPv6 address that is assigned to the virtual gateway address, such as 199.209.31.X or 2001:db8::X.
The other options are not attributes that are allocated to each virtual gateway address on Cisco ESA.


NEW QUESTION # 96
A Cisco ESA administrator has noticed that new messages being sent to the Centralized Policy Quarantine are being released after one hour. Previously, they were being held for a day before being released.
What was configured that caused this to occur?

  • A. The retention period was changed to one hour.
  • B. The threshold settings were set to override the clock settings.
  • C. The threshold settings were set to default.
  • D. The retention period was set to default.

Answer: C


NEW QUESTION # 97
To comply with a recent audit, an engineer must configure anti-virus message handling options on the incoming mail policies to attach warnings to the subject of an email.
What should be configured to meet this requirement for known viral emails?

  • A. Positively Identified Messages
  • B. Encrypted Messages
  • C. Virus Infected Messages
    B Unscannable Messages

Answer: C

Explanation:
Message Handling Settings:
Repaired Message Handling
Messages are considered repaired if the message was completely scanned and all viruses have been repaired or removed. These messages will be delivered as is.
Encrypted Message Handling
Messages are considered encrypted if the engine is unable to finish the scan due to an encrypted or protected field in the message. Messages that are marked encrypted may also be repaired.
Unscannable Message Handling
Messages are considered unscannable if a scanning timeout value has been reached, or the engine becomes unavailable due to an internal error. Messages that are marked unscannable may also be repaired.
Virus Infected Message Handling
The system may be unable to drop the attachment or completely repair a message. In these cases, you can configure how the system handles messages that could still contain viruses.
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01011.html#con_1132282


NEW QUESTION # 98

Refer to the exhibit. An engineer needs to change the existing Forged Email Detection message filter so that it references a newly created dictionary named 'Executives'.
What should be done to accomplish this task?

  • A. Change "TESF to "Executives".
  • B. Change fed' to "Executives".
  • C. Change "from" to "Executives".
  • D. Change "support" to "Executives".

Answer: D


NEW QUESTION # 99
Which method enables an engineer to deliver a flagged message to a specific virtual gateway address in the most flexible way?

  • A. Set up the interface group with the flag.
  • B. Map the envelope sender address to the host.
  • C. Issue the altsrchost command.
  • D. Apply a filter on the message.

Answer: C

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/ b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_01000.html#con_1133810


NEW QUESTION # 100
A network administrator enabled McAfee antivirus scanning on a Cisco Secure Email Gateway and configured the virus scanning action of "scan for viruses only" If the scanner finds a virus in an attachment for an incoming email, what action will be applied to this message?

  • A. The email and attachment are forwarded to the network administrator.
  • B. The attachment is dropped and replaced with a "Removed Attachment" file
  • C. No repair is attempted, and the attachment is either dropped or delivered
  • D. The system will attempt to repair the attachment

Answer: C

Explanation:
If the McAfee antivirus scanning is enabled on the Cisco Secure Email Gateway and the virus scanning action is set to "scan for viruses only", then no repair is attempted, and the attachment is either dropped or delivered based on the antivirus policy settings. The administrator can choose to drop or deliver the infected attachment by selecting the appropriate action in the antivirus policy. Reference: [Cisco Secure Email Gateway Administrator Guide - Configuring McAfee Antivirus Scanning]


NEW QUESTION # 101
An organization wants to designate help desk personnel to assist with tickets that request the release of messages from the spam quarantine because company policy does not permit direct end-user access to the quarantine. Which two roles must be used to allow help desk personnel to release messages while restricting their access to make configuration changes in the Cisco Secure Email Gateway? (Choose two.)

  • A. Technician
  • B. Help Desk User
  • C. Read-Only Operator
  • D. Administrator
  • E. Quarantine Administrator

Answer: B,E

Explanation:
All users with administrator privileges can change spam quarantine settings and view and manage messages in the spam quarantine. You do not need to configure spam quarantine access for administrator users.
If you configure access to the spam quarantine for users with the following roles, they can view, release, and delete messages in the spam quarantine:
-Operator
-Read-only operator
-Help desk user
-Guest
-Custom user roles that have spam quarantine privileges
These users cannot access spam quarantine settings.
https://www.cisco.com/c/en/us/td/docs/security/esa/esa14-0/user_guide/b_ESA_Admin_Guide_14-0/b_ESA_Admin_Guide_12_1_chapter_0100000.html?bookSearch=true#con_1624156


NEW QUESTION # 102
What are two phases of the Cisco ESA email pipeline? (Choose two.)

  • A. quarantine
  • B. workqueue
  • C. action
  • D. delivery
  • E. reject

Answer: B,D


NEW QUESTION # 103
An organization wants to use its existing Cisco ESA to host a new domain and enforce a separate corporate policy for that domain.
What should be done on the Cisco ESA to achieve this?

  • A. Use the deli very config command to configure mail delivery for the new domain.
  • B. Use the smtproutes command to configure a SMTP route for the new domain.
  • C. Use the dsestconf command to add a separate destination for the new domain.
  • D. Use the altrchost command to add a separate gateway for the new domain.

Answer: B

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011001.html one of the steps to accept mail for additional internal domains on the Cisco ESA is to choose Network > SMTP Routes and enter the new domain and the corresponding destination host IP address1. This can also be done using the smtproutes command in the CLI1. The other commands (deliveryconfig, dsestconf, and altrchost) are not related to this task.


NEW QUESTION # 104
Which action must be taken before a custom quarantine that is being used can be deleted?

  • A. Delete only the unused quarantine.
  • B. Delete the quarantine that is not assigned to a filter.
  • C. Delete the quarantine that is assigned to a filter.
  • D. Remove the quarantine from the message action of a filter.

Answer: D


NEW QUESTION # 105
To comply with a recent audit, an engineer must configure anti-virus message handling options on the incoming mail policies to attach warnings to the subject of an email.
What should be configured to meet this requirement for known viral emails?

  • A. Unscannable Messages
  • B. Positively Identified Messages
  • C. Encrypted Messages
  • D. Virus Infected Messages

Answer: C


NEW QUESTION # 106
What must be configured to allow the Cisco ESA to encrypt an email using the Cisco Registered Envelope Service?

  • A. provisioned email encryption profile
  • B. content filter to forward the email to the Cisco Registered Envelope server
  • C. message encryption from the mail flow policies with "CRES" selected
  • D. message encryption from a content filter that select "Message Encryption" over TLS

Answer: D

Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_010010.html


NEW QUESTION # 107
What is the order of virus scanning when multilayer antivirus scanning is configured?

  • A. The McAfee engine scans for viruses first and the Sophos engine scans for viruses second.
  • B. The Sophos engine scans for viruses first and the McAfee engine scans for viruses second.
  • C. The default engine scans for viruses first and the McAfee engine scans for viruses second.
  • D. The McAfee engine scans for viruses first and the default engine scans for viruses second.

Answer: A

Explanation:

https://www.cisco.com/c/en/us/td/docs/security/esa/esa13-
0/user_guide/b_ESA_Admin_Guide_13-0.pdf P.402


NEW QUESTION # 108
When a network engineer is troubleshooting a mail flow issue, they discover that some emails are rejected with an SMTP code of 451 and the error message "#4.7.1 Unable to perform DMARC verification". In the DMARC verification profile on the Cisco Secure Email Gateway appliance, which action must be set for messages that result in temporary failure to prevent these emails from being rejected?

  • A. Ignore
  • B. Quarantine
  • C. No Action
  • D. Accept

Answer: D

Explanation:
Accept is the action that must be set for messages that result in temporary failure to prevent these emails from being rejected. Accept allows Cisco ESA to deliver the messages without applying any DMARC actions or modifications.
To configure the accept action for messages that result in temporary failure on Cisco ESA, the administrator can follow these steps:
Select Mail Policies > DMARC Verification Profile and click Edit Settings for the DMARC verification profile that applies to the messages.
Under DMARC Actions, select Accept from the drop-down menu for Messages That Result in Temporary Failure.
Click Submit.
The other options are not valid actions for messages that result in temporary failure to prevent these emails from being rejected, because they either apply DMARC actions or modifications or do nothing.


NEW QUESTION # 109
......

300-720 dumps Sure Practice with 149 Questions: https://www.verifieddumps.com/300-720-valid-exam-braindumps.html

300-720 Practice Test Questions Answers Updated 149 Questions: https://drive.google.com/open?id=1kyTRRxfe5Waj7EBBMA8HjEQT-bfPAre2