1. Home
  2. Cisco
  3. 350-701

Cisco 350-701 Online Practice Questions and Exam Preparation

350-701 Exam Details

  • Exam Code
    :350-701
  • Exam Name
    :Implementing and Operating Cisco Security Core Technologies (SCOR)
  • Certification
    :CCIE Security
  • Vendor
    :Cisco
  • Total Questions
    :784 Q&As
  • Last Updated
    :May 30, 2026

Cisco 350-701 Online Questions & Answers

  • Question 171:

    Which deployment model is the most secure when considering risks to cloud adoption?

    A. Public Cloud
    B. Hybrid Cloud
    C. Community Cloud
    D. Private Cloud

  • Question 172:

    A Cisco Firepower administrator needs to configure a rule to allow a new application that has never been seen on the network. Which two actions should be selected to allow the traffic to pass without inspection? (Choose two)

    A. permit
    B. trust
    C. reset
    D. allow
    E. monitor

  • Question 173:

    The Cisco ASA must support TLS proxy for encrypted Cisco Unified Communications traffic. Where must the ASA be added on the Cisco UC Manager platform?

    A. Certificate Trust List
    B. Endpoint Trust List
    C. Enterprise Proxy Service
    D. Secured Collaboration Proxy

  • Question 174:

    What is the function of Cisco Cloudlock for data security?

    A. data loss prevention
    B. controls malicious cloud apps
    C. detects anomalies
    D. user and entity behavior analytics

  • Question 175:

    An organization wants to reduce their attack surface for cloud applications. They want to understand application communications, detect abnormal application behavior, and detect vulnerabilities within the applications. Which action accomplishes this task?

    A. Configure Cisco Tetration to detect anomalies and vulnerabilities.
    B. Modify the Cisco Duo configuration to restrict access between applications.
    C. Use Cisco ISE to provide application visibility and restrict access to them.
    D. Implement Cisco Umbrella to control the access each application is granted.

  • Question 176:

    Which common threat can be prevented by implementing port security on switch ports?

    A. VLAN hopping attacks
    B. spoofing attacks
    C. denial-of-service attacks
    D. eavesdropping attacks

  • Question 177:

    When wired 802.1X authentication is implemented, which two components are required? (Choose two)

    A. authentication server: Cisco Identity Service Engine
    B. supplicant: Cisco AnyConnect ISE Posture module
    C. authenticator: Cisco Catalyst switch
    D. authenticator: Cisco Identity Services Engine
    E. authentication server: Cisco Prime Infrastructure

  • Question 178:

    An administrator is adding a new Cisco ISE node to an existing deployment. What must be done to ensure that the addition of the node will be successful when inputting the FQDN?

    A. Change the IP address of the new Cisco ISE node to the same network as the others.
    B. Make the new Cisco ISE node a secondary PAN before registering it with the primary.
    C. Open port 8905 on the firewall between the Cisco ISE nodes
    D. Add the DNS entry for the new Cisco ISE node into the DNS server

  • Question 179:

    An organization is implementing URL blocking using Cisco Umbrella. The users are able to go to some sites but other sites are not accessible due to an error. Why is the error occurring?

    A. Client computers do not have the Cisco Umbrella Root CA certificate installed.
    B. IP-Layer Enforcement is not configured.
    C. Client computers do not have an SSL certificate deployed from an internal CA server.
    D. Intelligent proxy and SSL decryption is disabled in the policy

  • Question 180:

    A website administrator wants to prevent SQL injection attacks against the company's customer database, which is referenced by the web server. Which two methods help prevent SQL injection attacks? (Choose two.)

    A. using load balancers with NAT
    B. performing input validation
    C. enforcing TLS 1.3 only
    D. using SSL certificates
    E. using web application firewalls

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 350-701 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.