Cisco 350-701 Online Practice Questions and Exam Preparation

Cisco 350-701 Online Questions & Answers

• Question 441:

  What is a difference between an SQL injection and a cross-site scripting attack?

  A. SQL injection intercepts user information, and XSS causes false or unpredictable results.
  B. SQL injection modifies SQL queries, and XSS cloaks by encoding tags.
  C. SQL injection detects environments, and XSS cloaks by encoding tags.
  D. SQL injection modifies SQL queries, and XSS allows access to files beyond the root folder.
  B. SQL injection modifies SQL queries, and XSS cloaks by encoding tags.

  ---

  Explanation

• Question 442:

  What are two characteristics of Cisco DNA Center APIs? (Choose two)

  A. Postman is required to utilize Cisco DNA Center API calls.
  B. They do not support Python scripts.
  C. They are Cisco proprietary.
  D. They quickly provision new devices.
  E. They view the overall health of the network
  D. They quickly provision new devices.
  E. They view the overall health of the network

  ---

  Explanation

  -Use the Know Your Network REST methods to GET information about clients, sites, topology, devices, and issues: Retrieve network health information and site and network physical, Layer 2, Layer 3, and VLAN information. -Configuration Templates with the Template Programmer/Editior is a centralized CLI-management tool that facilitates design and provisioning of workflows in Cisco DNA Center.

  https://developer.cisco.com/docs/dna-center/#!cisco-dna-center-platform-overview/intent-api-northbound

  Postman is not required: Python, SDK and postman can be used.

  https://robertcsapo.medium.com/3-simple-ways-to-use-cisco-dna-center-platform-apis-7eee49b76287 These APIs can be open or proprietary.

  https://www.ciscopress.com/articles/article.asp?p=3004581andseqNum=2

• Question 443:

  An organization is trying to implement micro-segmentation on the network and wants to be able to gain visibility on the applications within the network. The solution must be able to maintain and force compliance. Which product should be used to meet these requirements?

  A. Cisco Secure Workload
  B. Cisco Secure Network Analytics
  C. Cisco AMP
  D. Cisco Umbrella
  A. Cisco Secure Workload

  ---

  Explanation

• Question 444:

  What is a benefit of using Cisco FMC over Cisco ASDM?

  A. Cisco FMC uses Java while Cisco ASDM uses HTML5.
  B. Cisco FMC provides centralized management while Cisco ASDM does not.
  C. Cisco FMC supports pushing configurations to devices while Cisco ASDM does not.
  D. Cisco FMC supports all firewall products whereas Cisco ASDM only supports Cisco ASA devices
  B. Cisco FMC provides centralized management while Cisco ASDM does not.

  ---

  Explanation

  https://www.cisco.com/c/en/us/products/collateral/security/firesight- management-center/datasheetc78-736775.html

• Question 445:

  A Cisco Secure Cloud Analytics administrator is setting up a private network monitor sensor to monitor an on-premises environment. Which two pieces of information from the sensor are used to link to the Secure Cloud Analytics portal? (Choose two.)

  A. private IP address
  B. unique service key
  C. SSL certificate
  D. public IP address
  E. NAT ID
  B. unique service key
  E. NAT ID

  ---

  Explanation

• Question 446:

  Refer to the exhibit.

  

  An engineer must configure an incoming mail policy so that each email sent from [email protected] to a domain of @cisco.com is scanned for antispam and advanced malware protection. All other settings will use the default behavior.

  What must be configured in the incoming mail policy to meet the requirements?

  A. Policy Name: Default PolicySender: [email protected]: @cisco.com
  B. Policy Name: usera1 policySender: [email protected]: @cisco.com
  C. Policy Name: Anti-Malware policySender: [email protected]: @cisco.com
  D. Policy Name: cisco.com policySender: [email protected]: @cisco.com
  B. Policy Name: usera1 policySender: [email protected]: @cisco.com

  ---

  Explanation

• Question 447:

  The main function of northbound APIs in the SDN architecture is to enable communication between which two areas of a network?

  A. SDN controller and the cloud
  B. management console and the SDN controller
  C. management console and the cloud
  D. SDN controller and the management solution
  D. SDN controller and the management solution

  ---

  Explanation

  Northbound APIs are the link between the applications and the SDN controller. The applications can tell the network what they need (data, storage, bandwidth, and so on) and the network can deliver those resources, or communicate what it has.

• Question 448:

  Which Cisco ISE service checks the compliance of endpoints before allowing the endpoints to connect to the network?

  A. posture
  B. profiler
  C. Cisco TrustSec
  D. Threat Centric NAC
  A. posture

  ---

  Explanation

• Question 449:

  What are two benefits of using an MDM solution? (Choose two.)

  A. grants administrators a way to remotely wipe a lost or stolen device
  B. provides simple and streamlined login experience for multiple applications and users
  C. native integration that helps secure applications across multiple cloud platforms or on- premises environments
  D. encrypts data that is stored on endpoints
  E. allows for centralized management of endpoint device applications and configurations
  A. grants administrators a way to remotely wipe a lost or stolen device
  E. allows for centralized management of endpoint device applications and configurations

  ---

  Explanation

• Question 450:

  What is a benefit of using a multifactor authentication strategy?

  A. It provides visibility into devices to establish device trust.
  B. It provides secure remote access for applications.
  C. It provides an easy, single sign-on experience against multiple applications
  D. lt protects data by enabling the use of a second validation of identity.
  D. lt protects data by enabling the use of a second validation of identity.

  ---

  Explanation