350-701 Exam Details

  • Exam Code
    :350-701
  • Exam Name
    :Implementing and Operating Cisco Security Core Technologies (SCOR)
  • Certification
    :CCIE Security
  • Vendor
    :Cisco
  • Total Questions
    :784 Q&As
  • Last Updated
    :Jul 10, 2026

Cisco 350-701 Online Questions & Answers

  • Question 71:

    Which Dos attack uses fragmented packets to crash a target machine?

    A. smurf
    B. MITM
    C. teardrop
    D. LAND

  • Question 72:

    Which two criteria must a certificate meet before the WSA uses it to decrypt application traffic? (Choose two.)

    A. It must include the current date.
    B. It must reside in the trusted store of the WSA.
    C. It must reside in the trusted store of the endpoint.
    D. It must have been signed by an internal CA.
    E. it must contain a SAN.

  • Question 73:

    A Cisco FTD engineer is creating a new IKEv2 policy called s2s00123456789 for their organization to allow for additional protocols to terminate network devices with. They currently only have one policy established and need the new policy to be a backup in case some devices cannot support the stronger algorithms listed in the primary policy. What should be done in order to support this?

    A. Change the integrity algorithms to SHA* to support all SHA algorithms in the primary policy
    B. Make the priority for the new policy 5 and the primary policy 1
    C. Change the encryption to AES* to support all AES algorithms in the primary policy
    D. Make the priority for the primary policy 10 and the new policy 1

  • Question 74:

    Which command enables 802.1X globally on a Cisco switch?

    A. dot1x system-auth-control
    B. dot1x pae authenticator
    C. authentication port-control aut
    D. aaa new-model

  • Question 75:

    Which functions of an SDN architecture require southbound APIs to enable communication?

    A. SDN controller and the network elements
    B. management console and the SDN controller
    C. management console and the cloud
    D. SDN controller and the cloud

  • Question 76:

    What are two targets in cross-site scripting attacks? (Choose two.)

    A. footer
    B. cookie
    C. input
    D. header
    E. image

  • Question 77:

    Which Cisco network security device supports contextual awareness?

    A. ISE
    B. Cisco IOS
    C. Cisco ASA
    D. Firepower

  • Question 78:

    Why is it important to implement MFA inside of an organization?

    A. To prevent man-the-middle attacks from being successful.
    B. To prevent DoS attacks from being successful.
    C. To prevent brute force attacks from being successful.
    D. To prevent phishing attacks from being successful.

  • Question 79:

    Which proxy mode must be used on Cisco WSA to redirect TCP traffic with WCCP?

    A. transparent
    B. redirection
    C. forward
    D. proxy gateway

  • Question 80:

    Which feature is leveraged by advanced antimalware capabilities to be an effective endpomt protection platform?

    A. big data
    B. storm centers
    C. sandboxing
    D. blocklisting

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 350-701 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.