
300-720 Exam Dumps - PDF Questions and Testing Engine
300-720 Dumps - The Sure Way To Pass Exam
NEW QUESTION # 17
When URL logging is configured on a Cisco ESA, which feature must be enabled first?
- A. antispam
- B. senderbase reputation filter
- C. virus outbreak filter
- D. antivirus
Answer: C
NEW QUESTION # 18
Which antispam feature is utilized to give end users control to allow emails that are spam to be delivered to their inbox, overriding any spam verdict and action on the Cisco ESA?
- A. end user spam quarantine access
- B. end user safelist
- C. end user passthrough list
- D. end user allow list
Answer: A
NEW QUESTION # 19
The CEO sent an email indicating that all emails containing a string of 123ABCDEFGHJ cannot be delivered and must be sent into quarantine for further inspection. Given the requirement, which regular expression should be used to match on that criteria?
- A. \d{3}[A-Z]{9}
- B. \\D{3}[A-Z]{9}
- C. {3}\d{9}[A-Z]
- D. \W{3}[A-Z]{9}
Answer: A
Explanation:
A regular expression is a sequence of characters that defines a search pattern for text. To match a string of 123ABCDEFGHJ, you need to use the following regular expression: \d{3}[A-Z]{9}. This expression means that the string must start with three digits (\d{3}), followed by nine uppercase letters ([A-Z]{9}). This expression will match any string that has the same format as 123ABCDEFGHJ. Reference = User Guide for AsyncOS 12.0 for Cisco Email Security Appliances - GD (General Deployment) - Regular Expressions [Cisco Secure Email Gateway] - Cisco
NEW QUESTION # 20
Which type of query must be configured when setting up the Spam Quarantine while merging notifications?
- A. Spam Quarantine Alias Authentication Query
- B. Spam Quarantine Alias Routing Query
- C. Spam Quarantine Alias Consolidation Query
- D. Spam Quarantine Alias Masquerading Query
Answer: C
NEW QUESTION # 21
Which type of attack is prevented by configuring file reputation filtering and file analysis features?
- A. zero-day
- B. backscatter
- C. phishing
- D. denial of service
Answer: A
NEW QUESTION # 22
A Cisco ESA administrator has noticed that new messages being sent to the Centralized Policy Quarantine are being released after one hour. Previously, they were being held for a day before being released.
What was configured that caused this to occur?
- A. The threshold settings were set to default.
- B. The retention period was set to default.
- C. The threshold settings were set to override the clock settings.
- D. The retention period was changed to one hour.
Answer: A
NEW QUESTION # 23
When the Spam Quarantine is configured on the Cisco ESA, what validates end-users via LDAP during login to the End-User Quarantine?
- A. Spam Quarantine End-User Authentication Query
- B. Spam Quarantine External Authentication Query
- C. Spam Quarantine Alias Consolidation Query
- D. Enabling the End-User Safelist/Blocklist feature
Answer: A
Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118692- configure-esa-00.html
NEW QUESTION # 24
When the Cisco ESA is configured to perform antivirus scanning, what is the default timeout value?
- A. 30 seconds
- B. 90 seconds
- C. 60 seconds
- D. 120 seconds
Answer: C
Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01011.html
NEW QUESTION # 25
A company has deployed a new mandate that requires all emails sent externally from the Sales Department to be scanned by DLP for PCI-DSS compliance. A new DLP policy has been created on the Cisco ESA and needs to be assigned to a mail policy named `Sales' that has yet to be created.
Which mail policy should be created to accomplish this task?
- A. Preliminary Mail Policy
- B. Incoming Mail Flow Policy
- C. Outgoing Mail Policy
- D. Outgoing Mail Flow Policy
Answer: C
Explanation:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-
0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_010001.html#task_140
94
NEW QUESTION # 26
When the Cisco ESA is configured to perform antivirus scanning, what is the default timeout value?
- A. 30 seconds
- B. 90 seconds
- C. 60 seconds
- D. 120 seconds
Answer: C
Explanation:
When Cisco ESA is configured to perform antivirus scanning, the default timeout value is 60 seconds, which means that Cisco ESA will wait for 60 seconds for the antivirus engine to scan a message before applying the configured action for unscannable messages, such as deliver, drop, or quarantine.
NEW QUESTION # 27
What is a category for classifying graymail?
- A. Priority
- B. Malicious
- C. Marketing
- D. Spam
Answer: C
Explanation:
According to the [Cisco Secure Email User Guide], graymail is a category of email messages that are not spam but may be unwanted by some recipients, such as newsletters, promotions, or social media updates[5, p. 25]. Marketing is one of the subcategories of graymail that includes messages that advertise products or services[5, p. 26].
The other options are not valid because:
A) Malicious is not a category for classifying graymail. It is a category for classifying email messages that contain malicious content such as malware, phishing, or fraud[5, p. 25].
C) Spam is not a category for classifying graymail. It is a category for classifying email messages that are unsolicited, unwanted, or harmful[5, p. 25].
D) Priority is not a category for classifying graymail. It is a category for classifying email messages that are important, urgent, or relevant[5, p. 25].
NEW QUESTION # 28
Which two components form the graymail management solution in Cisco ESA? (Choose two.)
- A. improved mail efficacy
- B. integrated graymail scanning engine
- C. cloud-based unsubscribe service
- D. secure subscribe option for end users
- E. uniform unsubscription management interface for end users
Answer: B,C
Explanation:
The graymail management solution in the appliance comprises of two components: an integrated graymail scanning engine and a cloud-based Unsubscribe Service. The integrated graymail scanning engine identifies graymail messages using various criteria and assigns them to different categories. The cloud-based Unsubscribe Service provides an easy mechanism for end users to unsubscribe from unwanted messages by checking the reputation of the unsubscribe links and performing the unsubscribe process on behalf of the end user.
NEW QUESTION # 29
What must be configured to allow the Cisco ESA to encrypt an email using the Cisco Registered Envelope Service?
- A. provisioned email encryption profile
- B. message encryption from a content filter that select "Message Encryption" over TLS
- C. message encryption from the mail flow policies with "CRES" selected
- D. content filter to forward the email to the Cisco Registered Envelope server
Answer: B
Explanation:
Explanation/Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/ b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_010010.html
NEW QUESTION # 30
A recent engine update was pulled down for graymail and has caused the service to start crashing. It is critical to fix this as quickly as possible.
What must be done to address this issue?
- A. Download another update from the Service Updates page.
- B. Roll back to a previous version of the engine from the Services Overview page.
- C. Download another update from the IMS and Graymail page.
- D. Roll back to a previous version of the engine from the System Health page.
Answer: B
Explanation:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-
1/user_guide/b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_11_1_chapter_0100010.html#t ask_9F07A032042F48C6AEDB69D325CD3C5F
NEW QUESTION # 31
Which two action types are performed by Cisco ESA message filters? (Choose two.)
- A. final actions
- B. non-final actions
- C. filter actions
- D. discard actions
- E. quarantine actions
Answer: A,B
Explanation:
Reference:
https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/ b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_01000.html
NEW QUESTION # 32
Which action is a valid fallback when a client certificate is unavailable during SMTP authentication on Cisco ESA?
- A. SMTP TLS
- B. SMTP AUTH
- C. LDAP BIND
- D. LDAP Query
Answer: B
Explanation:
SMTP AUTH is a valid fallback action when a client certificate is unavailable during SMTP authentication on Cisco ESA. SMTP AUTH is a method of authenticating SMTP clients using username and password credentials, which can be verified by an LDAP server or a local database on Cisco ESA.
NEW QUESTION # 33
Which global setting is configured under Cisco ESA Scan Behavior?
- A. minimum depth of attachment recursion to scan
- B. attachment scanning timeout
- C. minimum attachment size to scan
- D. actions for unscannable messages due to attachment type
Answer: B
NEW QUESTION # 34
......
Cisco 300-720 certification exam is an important certification for security professionals who are responsible for securing email using the Cisco ESA. By demonstrating expertise in this area, professionals can enhance their career prospects and contribute to the security of their organization's email infrastructure.
Pass Cisco 300-720 Exam Quickly With BootcampPDF: https://examcollection.bootcamppdf.com/300-720-exam-actual-tests.html