December 21, 2024

lead4pass 300-720 dumps

leads4pass 300-720 dumps Update Adds More exam questions

leads4pass 300-720 dumps released the latest version in October!

leads4pass 300-720 dumps: https://www.leads4pass.com/300-720.html Updated with new exam questions, based on the new 300-720 SESA “Securing Email with Cisco Email Security Appliance” exam topic:

  • Cisco Email Security Appliance Administration
  • Spam Control with Talos SenderBase and Antispam
  • Content and Message Filters
  • LDAP and SMTP Sessions
  • Email Authentication and Encryption
  • System Quarantines and Delivery Methods

Expanded with more exam questions, it is the latest 300-720 SESA exam solution!

It also provides two learning methods, PDF and VCE, both of which contain the latest exam practice questions to help you prepare for the 300-720 SESA exam easily!

Latest 300-720 SESA Exam Details:

Exam name:Securing Email with Cisco Email Security Appliance (SESA)
Exam code:300-720
The number of exam questions:55-65
Languages:English
Time:90 minutes
Price:$300 USD
Exam Type:Multiple-choice (single answer)
Multiple-choice (multiple answers)
Drag and drop
Simulation
Passing Score:750-850 / 1000 (Data Variable)
Exam Registration:In-person, Pearson VUE

Free sharing of Latest 300-720 dumps exam questions online practice

FromNumber of exam questionsTypeRelated exams
leads4pass15/142FreeCCNP Security

Question 1:

A network engineer is editing the default DMARC verification profile on a Cisco ESA and must ensure that the configured Message Action in the profile matches the policy in the DMARC record. What must be set to achieve this result?

A. “Message Action when the Policy in DMARC Record is Reject” to Reject

B. “Message Action when the Policy in DMARC Record is None” to Quarantine

C. “Message Action when the Policy in DMARC Record is None” to No Action

D. “Message Action when the Policy in DMARC Record is Reject” to Quarantine

Correct Answer: A

Question 2:

A network administrator notices that there are a high number of queries to the LDAP server. The mail logs show an entry “550 Too many invalid recipients | Connection closed by foreign host.” Which feature must be used to address this?

A. DHAP

B. SBRS

C. LDAP

D. SMTP

Correct Answer: D

Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011010.html

Question 3:

An analyst creates a new content dictionary to use with Forged Email Detection. Which entry will be added to the dictionary?

A. mycompany.com

B. Alpha Beta

C. ^Alpha\ Beta$

D. [email protected]

Correct Answer: A

Reference: https://www.cisco.com/c/en/us/products/collateral/security/email-security-appliance/whitepaper_C11-737596.html

Question 4:

What is the benefit of implementing URL filtering on the Cisco ESA?

A. removes threats from malicious URLs

B. blacklists spam

C. provides URL reputation protection

D. enhances reputation against malicious URLs

Correct Answer: C

Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118775-technote-esa-00.html

Question 5:

A company has deployed a new mandate that requires all emails sent externally from the Sales Department to be scanned by DLP for PCI-DSS compliance. A new DLP policy has been created on the Cisco ESA and needs to be assigned to a mail policy named `Sales\’ that has yet to be created.

Which mail policy should be created to accomplish this task?

A. Outgoing Mail Policy

B. Preliminary Mail Policy

C. Incoming Mail Flow Policy

D. Outgoing Mail Flow Policy

Correct Answer: A

Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_010001.html#task_1409483

Question 6:

Which feature must be activated on a Cisco ESA to combat backscatter?

A. Graymail Detection

B. Bounce Profile

C. Forged Email Detection

D. Bounce Verification

Correct Answer: D

Question 7:

A Cisco ESA administrator is creating a Mail Flow Policy to receive outbound emails from Microsoft Exchange. Which Connection Behavior must be selected to properly process the messages?

A. Delay

B. Accept

C. Relay

D. Reject

Correct Answer: C

Question 8:

A company security policy requires that the finance department have an easy way to apply encryption to their outbound messages that contain sensitive data. Users must be able to flag the messages that require encryption versus a Cisco ESA scanning all messages and automatically encrypting via detection. Which action enables this capability?

A. Create an outgoing content filter with no conditions and with the Encrypt and Deliver Now action configured with [SECURE] in the Subject setting.

B. Create a DLP policy manager message action with encryption enabled and apply it to active DLP policies for outgoing mail.

C. Create an encryption profile with [SECURE] in the Subject setting and enable encryption on the mail flow policy.

D. Create an encryption profile and an outgoing content filter that includes \[SECURE\] within the Subject Header: Contains condition along with the Encrypt and Deliver Now action.

Correct Answer: D

Question 9:

Which two statements about configuring message filters within the Cisco ESA are true? (Choose two.)

A. The filters command executed from the CLI is used to configure the message filters.

B. Message filter configuration within the web user interface is located within Incoming Content Filters.

C. The filterconfig command executed from the CLI is used to configure message filters.

D. Message filters can be configured only from the CLI.

E. Message filters can be configured only from the web user interface.

Correct Answer: AD

Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/213940-esa-using-a-message-filter-to-take-act.html

Question 10:

Which two features of Cisco Email Security are added to a Sender Group to protect an organization against email threats? (Choose two.)

A. NetFlow

B. geolocation-based filtering

C. heuristic-based filtering

D. senderbase reputation filtering

E. content disarm and reconstruction

Correct Answer: CD

Question 11:

What is a valid content filter action?

A. decrypt on delivery

B. quarantine

C. skip antispam

D. archive

Correct Answer: B

Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01010.html#con_1158022

Question 12:

The Cisco ESA is processing many messages that are sent to invalid recipients. To reduce this excessive processing, an engineer is preparing to use LDAP for recipient verification. Which two steps are required to accomplish this task? (Choose two.)

A. Configure LDAP server profiles.

B. Enable external LDAP authentication.

C. Configure the LDAP query.

D. Enable LDAP authentication on a listener.

E. Configure incoming mail policy to query LDAP server.

Correct Answer: AE

Question 13:

An engineer is configuring an SMTP authentication profile on a Cisco ESA which requires certificate verification. Which section must be configured to accomplish this goal?

A. Mail Flow Policies

B. Sending Profiles

C. Outgoing Mail Policies

D. Verification Profiles

Correct Answer: A

Question 14:

An email containing a URL passes through the Cisco ESA that has content filtering disabled for all mail policies. The sender is [email protected], the recipients are [email protected], [email protected], [email protected], and [email protected]. The subject of the email is Test Document395898847. An administrator wants to add a policy to ensure that the Cisco ESA evaluates the web reputation score before permitting this email.

Which two criteria must be used by the administrator to achieve this? (Choose two.)

A. Subject contains “TestDocument”

B. Sender matches test1.com

C. Email body contains a URL

D. Date and time of email

E.

Correct Answer: AC

Question 15:

DRAG DROP

Drag and drop the Cisco ESA reactions to a possible DLP from the left onto the correct action types on the right.

Select and Place:

Latest 300-720 dumps exam questions 15 online practice

Correct Answer:

Latest 300-720 dumps exam questions 15-1 online practice

Reference:

https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_010001.html (message actions)

Summarize:

leads4pass 300-720 dumps The latest version meets the latest 300-720 SESA exam success conditions!

Each update and expanded exam practice questions are actually verified and guaranteed to be true and effective! And leads4pass 300-720 dumps are updated throughout the year, so you can download and use them at any time!

Download the latest 300-720 SESA exam solution: https://www.leads4pass.com/300-720.html (300-720 dumps), guaranteed to pass the exam 100%.

leads4pass has updated the latest valid Cisco 300-720 exam questions and answers. All exam questions have been verified to ensure successful passing of the exam.
leads4pass 300-720 dumps https://www.leads4pass.com/300-720.html (Total Questions: 94 Q&A). With many years of exam experience, 99.5% of the exam pass rate.
You can experience part of the exam practice questions shared by leads4pass online for free.

Free share part of Cisco SOA-C01 exam pdf

The free Cisco 300-720 exam PDF is shared from leads4pass. You can download the practice online. To get the complete Cisco 300-720 exam questions and answers, please choose leads4pass.
We update all exam questions and answers in real-time throughout the year to ensure immediate validity.

Cisco 300-720 exam practice questions and answers come from leads4pass and share a part for free

QUESTION 1
An administrator needs to configure Cisco ESA to ensure that emails are sent and authorized by the owner of the
domain. Which two steps must be performed to accomplish this task? (Choose two.)
A. Generate keys.
B. Create signing profile.
C. Create Mx record.
D. Enable SPF verification.
E. Create DMARC profile.
Correct Answer: DE

QUESTION 2
Which two statements about configuring message filters within the Cisco ESA are true? (Choose two.)
A. The filters command executed from the CLI is used to configure the message filters.
B. Message filters configuration within the web user interface is located within Incoming Content Filters.
C. The filterconfig command executed from the CLI is used to configure message filters.
D. Message filters can be configured only from the CLI.
E. Message filters can be configured only from the web user interface.
Correct Answer: AD
Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/213940-esa-using-a-messagefilter-to-take-act.html

QUESTION 3
Which setting affects the aggressiveness of spam detection?
A. protection level
B. spam threshold
C. spam timeout
D. maximum depth of recursion scan
Correct Answer: B
Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118220-technote-esa-00.html

QUESTION 4
Which feature must be enabled first when URL logging is configured on a Cisco ESA?
A. antivirus
B. antispam
C. senderbase reputation filter
D. virus outbreak filter
Correct Answer: D
Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118775-technoteesa-00.html#:~:text=In%20order%20to%20implement%20URL,CLI%20by%20the%20ESA%20administrator.

QUESTION 5
Which feature utilizes sensor information obtained from Talos intelligence to filter email servers connecting into the
Cisco ESA?
A. SenderBase Reputation Filtering
B. Connection Reputation Filtering
C. Talos Reputation Filtering
D. SpamCop Reputation Filtering
Correct Answer: A

QUESTION 6
An engineer is configuring a Cisco ESA for the first time and needs to ensure that any email traffic coming from the
internal SMTP servers is relayed out through the Cisco ESA and is tied to the Outgoing Mail Policies. Which Mail Flow
Policy setting should be modified to accomplish this goal?
A. Exception List
B. Connection Behavior
C. Bounce Detection Signing
D. Reverse Connection Verification
Correct Answer: B
Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118136-qanda-esa-00.html

QUESTION 7cisco 300-720 exam questions q7

Refer to the exhibit. Which SPF record is valid for mycompany.com?
A. v=spf1 a mx ip4:199.209.31.2 -all
B. v=spf1 a mx ip4:10.1.10.23 -all
C. v=spf1 a mx ip4:199.209.31.21 -all
D. v=spf1 a mx ip4:172.16.18.230 -all
Correct Answer: D

QUESTION 8
What is the order of virus scanning when multilayer antivirus scanning is configured?
A. The default engine scans for viruses first and the McAfee engine scans for viruses second.
B. The Sophos engine scans for viruses first and the McAfee engine scans for viruses second.
C. The McAfee engine scans for viruses first and the default engine scans for viruses second.
D. The McAfee engine scans for viruses first and the Sophos engine scans for viruses second.
Correct Answer: C
If you configure multi-layer anti-virus scanning, the Cisco appliance performs virus scanning with the McAfee engine first
and the Sophos engine second. It scans messages using both engines, unless the McAfee engine detects a virus. If the
McAfee engine detects a virus, the Cisco appliance performs the anti-virus actions (repairing, quarantining, etc.) defined
for the mail policy.
Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01011.html

QUESTION 9
When email authentication is configured on Cisco ESA, which two key types should be selected on the signing profile?
(Choose two.)
A. DKIM
B. Public Keys
C. Domain Keys
D. Symmetric Keys
E. Private Keys
Correct Answer: AC
Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/213939-esa-configure-dkimsigning.html

QUESTION 10
Users have been complaining of a higher volume of emails containing profanity. The network administrator will need to
leverage dictionaries and create specific conditions to reduce the number of inappropriate emails. Which two filters
should be configured to address this? (Choose two.)
A. message
B. spam
C. VOF
D. sender group
E. content
Correct Answer: BE

QUESTION 11
DRAG DROP
Drag and drop the AsyncOS methods for performing DMARC verification from the left into the correct order on the right.
Select and Place:cisco 300-720 exam questions q11

Correct Answer:

cisco 300-720 exam questions q11-1

Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_11_1_chapter_010101.html

QUESTION 12
Which two steps configure Forged Email Detection? (Choose two.)
A. Configure a content dictionary with executive email addresses.
B. Configure a filter to use the Forged Email Detection rule and dictionary.
C. Configure a filter to check the Header From value against the Forged Email Detection dictionary.
D. Enable Forged Email Detection on the Security Services page.
E. Configure a content dictionary with friendly names.
Correct Answer: AB
Reference: https://explore.cisco.com/esa-feature-enablement/user-guide-for-async-11

QUESTION 13
Which type of query must be configured when setting up the Spam Quarantine while merging notifications?
A. Spam Quarantine Alias Routing Query
B. Spam Quarantine Alias Consolidation Query
C. Spam Quarantine Alias Authentication Query
D. Spam Quarantine Alias Masquerading Query
Correct Answer: B

The free Cisco 300-720 exam practice questions come from a part of the real exam room. You can experience part of the exam content first.
Get the complete 300-720 exam dumps at https://www.leads4pass.com/300-720.html (PDF + VCE) to help you successfully pass the exam.
leads4pass has two learning modes: PDF and VCE. You can choose according to your preferences.

ps.
The free Cisco 300-720 exam PDF is shared from leads4pass. You can download the practice online. To get the complete Cisco 300-720 exam questions and answers, please choose leads4pass.
We update all exam questions and answers in real-time throughout the year to ensure immediate validity.