Exam Details
Exam Code
:300-720Exam Name
:Securing Email with Cisco Email Security Appliance (SESA)Certification
:CCNPVendor
:CiscoTotal Questions
:148 Q&AsLast Updated
:May 10, 2024
Cisco CCNP 300-720 Questions & Answers
-
Question 41:
Refer to the exhibit.
What is the correct order of commands to set filter 2 to active?
A. filters-> edit-> 2-> Active
B. filters-> modify-> All-> Active
C. filters-> detail-> 2-> 1
D. filters-> set-> 2-> 1
-
Question 42:
A network administrator notices that there are a high number of queries to the LDAP server. The mail logs show an entry "550 Too many invalid recipients | Connection closed by foreign host." Which feature must be used to address this?
A. DHAP
B. SBRS
C. LDAP
D. SMTP
-
Question 43:
Refer to the exhibits. What must be done to enforce end user authentication before accessing quarantine?
A. Enable SPAM notification and use LDAP for authentication.
B. Enable SPAM Quarantine Notification and add the %quarantine_url% variable.
C. Change the end user quarantine access from None authentication to SAAS.
D. Change the end user quarantine access setting from None authentication to Mailbox.
-
Question 44:
An engineer is configuring a Cisco ESA for the first time and needs to ensure that any email traffic coming from the internal SMTP servers is relayed out through the Cisco ESA and is tied to the Outgoing Mail Policies. Which Mail Flow Policy setting should be modified to accomplish this goal?
A. Exception List
B. Connection Behavior
C. Bounce Detection Signing
D. Reverse Connection Verification
-
Question 45:
An organization wants to use its existing Cisco ESA to host a new domain and enforce a separate corporate policy for that domain. What should be done on the Cisco ESA to achieve this?
A. Use the smtproutes command to configure a SMTP route for the new domain.
B. Use the deliveryconfig command to configure mail delivery for the new domain.
C. Use the dsestconf command to add a separate destination for the new domain.
D. Use the altrchost command to add a separate gateway for the new domain.
-
Question 46:
Which feature must be enabled first when URL logging is configured on a Cisco ESA?
A. antivirus
B. antispam
C. senderbase reputation filter
D. virus outbreak filter
-
Question 47:
A recent engine update was pulled down for graymail and has caused the service to start crashing. It is critical to fix this as quickly as possible. What must be done to address this issue?
A. Roll back to a previous version of the engine from the Services Overview page.
B. Roll back to a previous version of the engine from the System Health page.
C. Download another update from the IMS and Graymail page.
D. Download another update from the Service Updates page.
-
Question 48:
Refer to the exhibit.
An engineer needs to change the existing Forged Email Detection message filter so that it references a newly created dictionary named `Executives'. What should be done to accomplish this task?
A. Change "from" to "Executives".
B. Change "TEST" to "Executives".
C. Change "fed" to "Executives".
D. Change "support" to "Executives".
-
Question 49:
An email containing a URL passes through the Cisco ESA that has content filtering disabled for all mail policies. The sender is [email protected], the recipients are [email protected], [email protected], [email protected], and [email protected]. The subject of the email is Test Document395898847. An administrator wants to add a policy to ensure that the Cisco ESA evaluates the web reputation score before permitting this email.
Which two criteria must be used by the administrator to achieve this? (Choose two.)
A. Subject contains "TestDocument"
B. Sender matches test1.com
C. Email body contains a URL
D. Date and time of email
E.
-
Question 50:
A company has deployed a new mandate that requires all emails sent externally from the Sales Department to be scanned by DLP for PCI-DSS compliance. A new DLP policy has been created on the Cisco ESA and needs to be assigned to a mail policy named `Sales' that has yet to be created.
Which mail policy should be created to accomplish this task?
A. Outgoing Mail Policy
B. Preliminary Mail Policy
C. Incoming Mail Flow Policy
D. Outgoing Mail Flow Policy
Related Exams:
300-610
Designing Cisco Data Center Infrastructure (DCID)350-501
Implementing and Operating Cisco Service Provider Network Core Technologies (SPCOR)350-701
Implementing and Operating Cisco Security Core Technologies (SCOR)350-601
Implementing and Operating Cisco Data Center Core Technologies (DCCOR)350-801
Implementing and Operating Cisco Collaboration Core Technologies (CLCOR)350-401
Implementing and Operating Cisco Enterprise Network Core Technologies (ENCOR) & CCIE Enterprise Infrastructure & CCIE Enterprise Wireless300-535
Automating and Programming Cisco Service Provider Solutions (SPAUTO)300-515
Implementing Cisco Service Provider VPN Services (SVPI)300-510
Implementing Cisco Service Provider Advanced Routing Solutions (SPRI)300-735
Automating and Programming Cisco Security Solutions (SAUTO)
Tips on How to Prepare for the Exams
Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 300-720 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.