1. Home
  2. Cisco
  3. 350-701

Cisco 350-701 Online Practice Questions and Exam Preparation

350-701 Exam Details

  • Exam Code
    :350-701
  • Exam Name
    :Implementing and Operating Cisco Security Core Technologies (SCOR)
  • Certification
    :CCIE Security
  • Vendor
    :Cisco
  • Total Questions
    :784 Q&As
  • Last Updated
    :May 30, 2026

Cisco 350-701 Online Questions & Answers

  • Question 161:

    Which feature is used in a push model to allow for session identification, host reauthentication, and session termination?

    A. AAA attributes
    B. CoA request
    C. AV pair
    D. carrier-grade NAT

  • Question 162:

    Refer to the exhibit. A network engineer must configure a Cisco router to send traps using SNMPv3. The engineer configures a remote user to receive traps and sets the security level to use authentication without privacy. Which command completes the configuration?

    A. snmp-server host 10.12.8.4 informs version 3 noauthno remoteuser config
    B. snmp-server host 10.12.8.4 informs version 3 noauthnoPriv remoteuser config
    C. snmp-server user TrapUser group2 remote 10.12.8.4 v3 auth md5 password1
    D. snmp-server user TrapUser group2 remote 10.12.8.4 v3 auth md5 password1 priv access des56

  • Question 163:

    Which action blocks specific IP addresses whenever a computer with Cisco Secure Endpoint installed connects to the network?

    A. Create an application block list and add the IP addresses.
    B. Create an IP Block and Allow list and add the IP addresses.
    C. Create an advanced custom detection policy and add the IP addresses.
    D. Create a simple custom detection policy and add the IP addresses.

  • Question 164:

    Which two conditions are prerequisites for stateful failover for IPsec? (Choose two)

    A. Only the IKE configuration that is set up on the active device must be duplicated on the standby device; the IPsec configuration is copied automatically
    B. The active and standby devices can run different versions of the Cisco IOS software but must be the same type of device.
    C. The IPsec configuration that is set up on the active device must be duplicated on the standby device
    D. Only the IPsec configuration that is set up on the active device must be duplicated on the standby device; the IKE configuration is copied automatically.
    E. The active and standby devices must run the same version of the Cisco IOS software and must be the same type of device

  • Question 165:

    What Cisco command shows you the status of an 802.1X connection on interface gi0/1?

    A. show authorization status
    B. show authen sess int gi0/1
    C. show connection status gi0/1
    D. show ver gi0/1

  • Question 166:

    How does Cisco Workload Optimization portion of the network do EPP solutions solely performance issues?

    A. It deploys an AWS Lambda system
    B. It automates resource resizing
    C. It optimizes a flow path
    D. It sets up a workload forensic score

  • Question 167:

    Email security has become a high-priority task for a security engineer at a large multi-national organization due to ongoing phishing campaigns.

    To help control this, the engineer has deployed an Incoming Content Filter with a URL reputation of (-10.00 to -6.00) on the Cisco ESA.

    Which action will the system perform to disable any links in messages that match the filter?

    A. Defang
    B. Quarantine
    C. FilterAction
    D. ScreenAction

  • Question 168:

    An engineer implements Cisco CloudLock to secure a Microsoft Office 365 application in the cloud. The engineer must configure protection for corporate files in case of any incidents. Which two actions must be taken to complete the implementation? (Choose two.)

    A. Remove all users as collaborators on the files.
    B. Transfer ownership of the files to a specified owner and folder.
    C. Expire the public share URL.
    D. Disable the ability for commenters and viewers to download and copy the files.
    E. Send Cisco Webex message to specified users when an incident is triggered.

  • Question 169:

    What is a capability of Cisco AVC?

    A. application bandwidth enforcement on Cisco IOS platforms
    B. interoperates by using GET VPN on tunnel interfaces
    C. traffic filtering by using a Security Intelligence policy
    D. deep packet inspection on IPsec encapsulated traffic

  • Question 170:

    Which capability is exclusive to a Cisco AMP public cloud instance as compared to a private cloud instance?

    A. RBAC
    B. ETHOS detection engine
    C. SPERO detection engine
    D. TETRA detection engine

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 350-701 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.