1. Home
  2. Cisco
  3. 350-701

Cisco 350-701 Online Practice Questions and Exam Preparation

350-701 Exam Details

  • Exam Code
    :350-701
  • Exam Name
    :Implementing and Operating Cisco Security Core Technologies (SCOR)
  • Certification
    :CCIE Security
  • Vendor
    :Cisco
  • Total Questions
    :784 Q&As
  • Last Updated
    :May 30, 2026

Cisco 350-701 Online Questions & Answers

  • Question 401:

    An administrator configures a Cisco WSA to receive redirected traffic over ports 80 and 443. The organization requires that a network device with specific WSA integration capabilities be configured to send the traffic to the WSA to proxy the requests and increase visibility, while making this invisible to the users. What must be done on the Cisco WSA to support these requirements?

    A. Configure transparent traffic redirection using WCCP in the Cisco WSA and on the network device
    B. Configure active traffic redirection using WPAD in the Cisco WSA and on the network device
    C. Use the Layer 4 setting in the Cisco WSA to receive explicit forward requests from the network device
    D. Use PAC keys to allow only the required network devices to send the traffic to the Cisco WSA

  • Question 402:

    Which kind of API that is used with Cisco DNA Center provisions SSIDs, QoS policies, and update software versions on switches?

    A. Integration
    B. Intent
    C. Event
    D. Multivendor

  • Question 403:

    Refer to the exhibit.

    What will happen when the Python script is executed?

    A. The hostname will be translated to an IP address and printed.
    B. The hostname will be printed for the client in the client ID field.
    C. The script will pull all computer hostnames and print them.
    D. The script will translate the IP address to FODN and print it

  • Question 404:

    When MAB is configured for use within the 802.1X environment, an administrator must create a policy that allows the devices onto the network. Which information is used for the username and password?

    A. The MAB uses the IP address as username and password.
    B. The MAB uses the Call-Station-ID as username and password.
    C. The MAB uses the MAC address as username and password.
    D. Each device must be set manually by the administrator.

  • Question 405:

    Refer to the exhibit.

    What is a result of the configuration?

    A. Traffic from the DMZ network is redirected
    B. Traffic from the inside network is redirected
    C. All TCP traffic is redirected
    D. Traffic from the inside and DMZ networks is redirected

  • Question 406:

    Which type of data exfiltration technique encodes data in outbound DNS requests to specific servers and can be stopped by Cisco Umbrella?

    A. DNS tunneling
    B. DNS flood attack
    C. cache poisoning
    D. DNS hijacking

  • Question 407:

    Why is it important for the organization to have an endpoint patching strategy?

    A. so the organization can identify endpoint vulnerabilities
    B. so the internal PSIRT organization is aware of the latest bugs
    C. so the network administrator is notified when an existing bug is encountered
    D. so the latest security fixes are installed on the endpoints

  • Question 408:

    Which two facts must be considered when deciding whether to deploy the Cisco Secure Web Appliance in Standard mode, Hybrid Web Security mode, or Cloud Web Security Connector mode? (Choose two.)

    A. External DLP is available only in Standard mode and Hybrid Web Security mode.
    B. The onsite web proxy is not supported in Cloud Web Security Connector mode.
    C. Standard mode and Hybrid Web Security mode perform the same actions in response to the application of an individual policy.
    D. Only Standard mode and Hybrid Web Security mode support Layer 4 traffic monitoring.
    E. ISE integration is available only in Standard mode and Hybrid Web Security mode.

  • Question 409:

    Refer to the exhibit.

    The DHCP snooping database resides on router R1, and dynamic ARP inspection is configured only on switch SW2. Which ports must be configured as untrusted so that dynamic ARP inspection operates normally?

    A. P2 and P3 only
    B. P5, P6, and P7 only
    C. P1, P2, P3, and P4 only
    D. P2, P3, and P6 only

  • Question 410:

    With Cisco AMP for Endpoints, which option shows a list of all files that have been executed in your environment?

    A. Prevalence
    B. File analysis
    C. Detections
    D. Vulnerable software
    E. Threat root cause

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 350-701 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.