Free 300-720 Braindumps Download Updated on Nov 24, 2023 with 149 Questions [Q75-Q98]

Q75. Which Cisco ESA security service is configured only through an outgoing mail policy?

antivirus

DLP

Outbreak Filters

AMP

Q76. Which two statements about configuring message filters within the Cisco ESA are true? (Choose two.)

The filters command executed from the CLI is used to configure the message filters.

Message filters configuration within the web user interface is located within Incoming Content Filters.

The filterconfig command executed from the CLI is used to configure message filters.

Message filters can be configured only from the CLI.

Message filters can be configured only from the web user interface.

Q77. To comply with a recent audit, an engineer must configure anti-virus message handling options on the incoming mail policies to attach warnings to the subject of an email.
What should be configured to meet this requirement for known viral emails?

Virus Infected Messages

Unscannable Messages

Encrypted Messages

Positively Identified Messages

Q78. An organization wants to designate help desk personnel to assist with tickets that request the release of messages from the spam quarantine because company policy does not permit direct end-user access to the quarantine. Which two roles must be used to allow help desk personnel to release messages while restricting their access to make configuration changes in the Cisco Secure Email Gateway? (Choose two.)

Administrator

Help Desk User

Read-Only Operator

Technician

Quarantine Administrator

Q79. A Cisco ESA administrator was notified that a user was not receiving emails from a specific domain. After reviewing the mail logs, the sender had a negative sender-based reputation score.
What should the administrator do to allow inbound email from that specific domain?

Create a new inbound mail policy with a message filter that overrides Talos.

Ask the user to add the sender to the email application’s allow list.

Modify the firewall to allow emails from the domain.

Add the domain into the allow list.

Q80. A security administrator deployed a Cisco Secure Email Gateway appliance with a mail policy configured to store suspected spam for review. The appliance is the DMZ and only the standard HTTP/HTTPS ports are allowed by the firewall. An administrator wants to ensure that users can view any suspected spam that was blocked. Which action must be taken to meet this requirement?

Enable the external Spam Quarantine and enter the IP address and port for the Secure Email and Web Manager

Enable the Spam Quarantine and leave the default settings unchanged.

Enable End-User Quarantine Access and point to an LDAP server for authentication.

Enable the Spam Quarantine and specify port 80 for HTTP and port 443 for HTTPS

Q81. An engineer is testing mail flow on a new Cisco ESA and notices that messages for domain abc.com are stuck in the delivery queue. Upon further investigation, the engineer notices that the messages pending delivery are destined for 192.168.1.11, when they should instead be routed to 192.168.1.10.
What configuration change needed to address this issue?

Add an address list for domain abc.com.

Modify Destination Controls entry for the domain abc.com.

Modify the SMTP route for the domain and change the IP address to 192.168.1.10.

Modify the Routing Tables and add a route for IP address to 192.168.1.10.

Q82. The CEO added a sender to a safelist but does not receive an important message expected from the trusted sender. An engineer evaluates message tracking on the Cisco Secure Email Gateway appliance and determines that the message was dropped by the antivirus engine. What is the reason for this behavior?

The sender is included in an ISP blocklist

Administrative access is required to create a safelist.

The sender didn’t mark the message as urgent

End-user safelists apply to antispam engines only.

Q83. Which two components must be configured to perform DLP scanning? (Choose two.)

Add a DLP policy on the Incoming Mail Policy.

Add a DLP policy to the DLP Policy Manager.

Enable a DLP policy on the Outgoing Mail Policy.

Enable a DLP policy on the DLP Policy Customizations.

Add a DLP policy to the Outgoing Content Filter.

Q84. Which two steps are needed to disable local spam quarantine before external quarantine is enabled?
(Choose two.)

Uncheck the Enable Spam Quarantine check box.

Select Monitor and click Spam Quarantine.

Check the External Safelist/Blocklist check box.

Select External Spam Quarantine and click on Configure.

Select Security Services and click Spam Quarantine.

Q85. Which process is skipped when an email is received from safedomain.com, which is on the safelist?

message filter

antivirus scanning

outbreak filter

antispam scanning

Q86. Which type of DNS record would contain the following line, which references the DKIM public key per RFC 6376?
v=DKIM1; p=76E629F05F709EF665853333EEC3F5ADE69A2362BECE406582670456943283BE

CNAME

AAAA

TXT

PTR

Q87. An organization has multiple Cisco Secure Email Gateway appliances deployed, resulting in several spam quarantines to manage. To manage the quarantined messages, the administrator enabled the centralized spam quarantine on the Cisco Secure Email and Web Manager appliance and configured the external spam quarantine on the Cisco Secure Email Gateway appliances. However, messages are still being directed to the local quarantine on the Cisco Secure Email Gateway appliances What change is necessary to complete the configuration?

Modify the incoming mail policies on the Cisco Secure Email Gateway appliances to redirect to the external quarantine

Disable the external spam quarantine on the Cisco Secure Email Gateway appliances

Disable the local spam quarantine on the Cisco Secure Email Gateway appliances.

Modify the external spam quarantine settings on the Cisco Secure Email Gateway appliances and change the port to 25

Q88. Which two statements about configuring message filters within the Cisco ESA are true? (Choose two.)

The filters command executed from the CLI is used to configure the message filters.

Message filters configuration within the web user interface is located within Incoming Content Filters.

The filterconfig command executed from the CLI is used to configure message filters.

Message filters can be configured only from the CLI.

Message filters can be configured only from the web user interface.

Q89. Which benefit does enabling external spam quarantine on Cisco SMA provide?

ability to back up spam quarantine from multiple Cisco ESAs to one central console

access to the spam quarantine interface on which a user can release, duplicate, or delete

ability to scan messages by using two engines to increase a catch rate

ability to consolidate spam quarantine data from multiple Cisco ESA to one central console

Q90. A Cisco Secure Email Gateway administrator is creating a Mail Flow Policy to receive outbound email from Microsoft Exchange. Which Connection Behavior must be selected to properly process the messages?

Accept

Delay

Relay

Reject

Q91. Which benefit does enabling external spam quarantine on Cisco SMA provide?

ability to back up spam quarantine from multiple Cisco ESAs to one central console

access to the spam quarantine interface on which a user can release, duplicate, or delete

ability to scan messages by using two engines to increase a catch rate

ability to consolidate spam quarantine data from multiple Cisco ESA to one central console

Q92. Which functionality is impacted if the assigned certificate under one of the IP interfaces is modified?

traffic between the Cisco Secure Email Gateway and the LDAP server

emails being delivered from the Cisco Secure Email Gateway

HTTPS traffic when connecting to the web user interface of the Cisco Secure Email Gateway

emails being received by the Cisco Secure Email Gateway

Q93. An administrator identifies that, over the past week, the Cisco ESA is receiving many emails from certain senders and domains which are being consistently quarantined. The administrator wants to ensure that these senders and domain are unable to send anymore emails.
Which feature on Cisco ESA should be used to achieve this?

incoming mail policies

safelist

blocklist

S/MIME Sending Profile

Q94. An administrator is trying to enable centralized PVO but receives the error, “Unable to proceed with Centralized Policy, Virus and Outbreak Quarantines configuration as esa1 in Cluster has content filters / DLP actions available at a level different from the cluster level.” What is the cause of this error?

Content filters are configured at the machine-level on esa1.

DLP is configured at the cluster-level on esa2.

DLP is configured at the domain-level on esa1.

DLP is not configured on host1.

Q95. Which Cisco Secure Email Threat Defense visibility and remediation mode is only available when using Cisco Secure Email Gateway as the message source?

Basic Authentication

No Authentication

Microsoft 365 Authentication

Cisco Security Cloud Sign On

Q96. What is the default port to deliver emails from the Cisco ESA to the Cisco SMA using the centralized Spam Quarantine?

8025

6443

6025

8443

Q97. Spreadsheets containing credit card numbers are being allowed to bypass the Cisco ESA.
Which outgoing mail policy feature should be configured to catch this content before it leaves the network?

file reputation filtering

outbreak filtering

data loss prevention

file analysis

Q98. A company has deployed a new mandate that requires all emails sent externally from the Sales Department to be scanned by DLP for PCI-DSS compliance. A new DLP policy has been created on the Cisco ESA and needs to be assigned to a mail policy named `Sales’ that has yet to be created.
Which mail policy should be created to accomplish this task?

Outgoing Mail Policy

Preliminary Mail Policy

Incoming Mail Flow Policy

Outgoing Mail Flow Policy