350-701 Practice Questions & Online Exam Preparation

350-701 Exam Details

Exam Code
:350-701
Exam Name
:Implementing and Operating Cisco Security Core Technologies (SCOR)
Certification
:CCIE Security
Vendor
:Cisco
Total Questions
:784 Q&As
Last Updated
:May 30, 2026

Cisco 350-701 Online Questions & Answers

Question 611:

What is the function of the crypto is a kmp key cisc406397954 address 0.0.0.0 0.0.0.0 command when establishing an IPsec VPN tunnel?
A. It defines what data is going to be encrypted via the VPN
B. lt configures the pre-shared authentication key
C. It prevents all IP addresses from connecting to the VPN server.
D. It configures the local address for the VPN server.

B. lt configures the pre-shared authentication key
Explanation
This command is used to configure pre-shared-key for IPsec remote acess users on the Cisco router. Address is mentioned as 0.0.0.0 0.0.0.0 because the users will be connecting from random ip addresses and it is almost impossible to mention all the ip addresses. Hence, 0.0.0.0 0.0.0.0 is used to allow all public ip addresses.
Question 612:

Which characteristic is unique to a Cisco WSAv as compared to a physical appliance?
A. supports VMware vMotion on VMware ESXi
B. requires an additional license
C. performs transparent redirection
D. supports SSL decryption

B. requires an additional license
Explanation
Question 613:

What are two rootkit types? (Choose two)
A. registry
B. virtual
C. bootloader
D. user mode
E. buffer mode

C. bootloader
D. user mode
Explanation
The term `rootkit' originally comes from the Unix world, where the word `root' is used to describe a user with thehighest possible level of access privileges, similar to an `Administrator' in Windows. The word `kit' refers to thesoftware that grants root-level access to the machine. Put the two together and you get `rootkit', a program thatgives someone ?with legitimate or malicious intentions ?privileged access to a computer.There are four main types of rootkits: Kernel rootkits, User mode rootkits, Bootloader rootkits, Memory rootkits
Question 614:

Cisco SensorBase gaihers threat information from a variety of Cisco products and services and performs analytics to find patterns on threats. Which term describes this process?
A. deployment
B. consumption
C. authoring
D. sharing

D. sharing
Explanation
"Sharing telemetry data with the SensorBase Network to improve visibility of alerts and sensor actions on a global scale"
https://www.cisco.com/c/en/us/td/docs/security/security_management/cisco_security_manager/security_manager/419/user/guide/CSMUserGuide/ipsglobe.html
"Participating in the Cisco SensorBase Network means that Cisco collects data and shares that information with the SensorBase threat management database. This data includes information about request attributes and how the appliance handles requests."
https://www.cisco.com/c/en/us/td/docs/security/wsa/wsa_14-1/User-Guide/b_WSA_UserGuide_14_01/b_WSA_UserGuide_11_7_chapter_00.html
Question 615:

Which Cisco command enables authentication, authorization, and accounting globally so that CoA is supported on the device?
A. aaa server radius dynamic-author
B. aaa new-model
C. auth-type all
D. ip device-tracking

B. aaa new-model
Explanation
aaa server radius dynamic-author Sets up the local AAA server for the dynamic authorization service, which must be enabled to support the CoA functionality to push the policy map in an input and output direction, and enters dynamic authorization local server configuration mode.
https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_usr_aaa/configuration/15-sy/sec-usr-aaa-15-sy-book/sec-rad-coa.html
Question 616:

Refer to the exhibit.
All servers are in the same VLAN/Subnet. DNS Server-1 and DNS Server-2 must communicate with each other, and all servers must communicate with default gateway multilayer switch. Which type of private VLAN ports should be configured to prevent communication between DNS servers and the file server?
A. Configure GigabitEthernet0/1 as community port, GigabitEthernet0/2 as isolated port, and GigabitEthernet0/3 and GigabitEthernet0/4 as promiscuous ports.
B. Configure GigabitEthernet0/1 as community port, GigabitEthernet0/2 as promiscuous port, Gigabit Ethernet0/3 and GigabitEthernet0/4 as isolated ports.
C. Configure GigabitEthernet0/1 as promiscuous port, GigabitEthernet0/2 as isolated port and GigabitEthernet0/3 and GrgabitEthernet0/4 as community ports
D. Configure GigabitEthernet0/1 as promiscuous port, GigabitEthernet0/2 as community port, and GigabitEthernet0/3 and GrgabitEthernet0/4 as isolated ports.

C. Configure GigabitEthernet0/1 as promiscuous port, GigabitEthernet0/2 as isolated port and GigabitEthernet0/3 and GrgabitEthernet0/4 as community ports
Explanation
Question 617:

What provides total management for mobile and PC including managing inventory and device tracking, remote view, and live troubleshooting using the included native remote desktop support?
A. mobile device management
B. mobile content management
C. mobile application management
D. mobile access management

A. mobile device management
Explanation
Question 618:

An engineer is adding a Cisco router to an existing environment. NTP authentication is configured on all devices in the environment with the command ntp authentication-key 1 md5 Cisc427128380. There are two routers on the network that are configured as NTP servers for redundancy, 192.168.1.110 and 192.168.1.111. 192.168.1.110 is configured as the authoritative time source. What command must be configured on the new router to use 192.168.1.110 as its primary time source without the new router attempting to offer time to existing devices?
A. ntp server 192.168.1.110 primary key 1
B. ntp peer 192.168.1.110 prefer key 1
C. ntp server 192.168.1.110 key 1 prefer
D. ntp peer 192.168.1.110 key 1 primary

C. ntp server 192.168.1.110 key 1 prefer
Explanation
Question 619:

Which two Cisco Umbrella security categories are used to prevent command-and-control callbacks on port 53 and protect users from being tricked into providing confidential information? (Choose two.)
A. DNS Tunneling VPN
B. Dynamic DNS
C. Newly Seen Domains
D. Potentially Harmful Domains
E. Phishing Attacks

A. DNS Tunneling VPN
E. Phishing Attacks
Explanation
Question 620:

For Cisco IOS PKI, which two types of Servers are used as a distribution point for CRLs? (Choose two)
A. SDP
B. LDAP
C. subordinate CA
D. SCP
E. HTTP

B. LDAP
E. HTTP
Explanation
https://www.cisco.com/c/en/us/td/docs/ios- xml/ios/sec_conn_pki/configuration/15-mt/sec-pki-15-mtbook/sec-pki-overview.html

Related Exams:

350-701
Implementing and Operating Cisco Security Core Technologies (SCOR)

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 350-701 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.

Cisco 350-701 Online Practice Questions and Exam Preparation

350-701 Exam Details

Exam Code

Exam Name

Certification

Vendor

Total Questions

Last Updated

Cisco 350-701 Online Questions & Answers

Question 611:

Question 612:

Question 613:

Question 614:

Question 615:

Question 616:

Question 617:

Question 618:

Question 619:

Question 620:

Related Exams:

350-701

Tips on How to Prepare for the Exams