[Updated Mar 2022] Lead4Pass 350-701 dumps | Provide free practice questions

Lead4Pass 350-701 dumps provide candidates with up-to-date and valid exam materials! And with PDF and VCE two learning formats, they both contain the latest exam questions and answers, you can choose arbitrarily!
Download 350-701 dumps with PDF and VCE: https://www.leads4pass.com/350-701.html (521 Q&A), practice test all actual exam questions, and provide difficult problem annotations to help you really master all exams gist, Make sure you pass the exam with ease.

What’s more, Lead4Pass 350-701 dumps share some latest exam practice questions for free:

TypeNumber of exam questionsExam nameExam code
Free15Implementing and Operating Cisco Security Core Technologies (SCOR)350-701
QUESTION 1:

Which two features of Cisco DNA Center are used in a Software Defined Network solution? (Choose two)

A. accounting

B. assurance

C. automation

D. authentication

E. encryption

Correct Answer: BC

Reference: https://www.cisco.com/c/en/us/products/collateral/cloud-systems-management/dna-center/nb-06-cisco-dna-center-aag-cte-en.html

QUESTION 2:

A network engineer is configuring DMVPN and entered the crypto is amp key cisc0380739941 address 0.0.0.0 command on host A The tunnel is not being established to host B.

What action is needed to authenticate the VPN?

A. Enter the same command on host B.

B. Enter the command with a different password on host B.

C. Change isakmp to ikev2 in the command on host A.

D. Change the password on host A to the default password.

Correct Answer: A

QUESTION 3:

Which two features of Cisco Email Security can protect your organization against email threats? (Choose two)

A. Time-based one-time passwords

B. Data loss prevention

C. Heuristic-based filtering

D. Geolocation-based filtering

E. NetFlow

Correct Answer: BD

Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-0/user_guide_fs/b_ESA_Admin_Guide_11_0/b_ESA_Admin_Guide_chapter_00.html

QUESTION 4:
latest 350-701 dumps questions 4

Refer to the exhibit. When configuring a remote access VPN solution terminating on the Cisco ASA, an administrator would like to utilize an external token authentication mechanism in conjunction with AAA authentication using machine certificates. Which configuration item must be modified to allow this?

A. Group Policy

B. Method

C. SAML Server

D. DHCP Servers

Correct Answer: B

In order to use AAA along with an external token authentication mechanism, set the “Method” as “Both” in the Authentication.

QUESTION 5:

What are two rootkit types? (Choose two)

A. registry

B. virtual

C. bootloader

D. user mode

E. buffer mode

Correct Answer: CD

The term rootkit\\' originally comes from the Unix world, where the wordroot\’ is used to describe a user with the highest possible level of access privileges, similar to a Administrator\\' in Windows. The wordkit\’ refers to thesoftware that grants root-level access to the machine. Put the two together and you get `rootkit\’, a program that gives someone? with legitimate or malicious intentions? privileged access to a computer. There are four main types of rootkits: Kernel rootkits, User mode rootkits, Bootloader rootkits, Memory rootkits

QUESTION 6:

Which two descriptions of AES encryption are true? (Choose two)

A. AES is less secure than 3DES.

B. AES is more secure than 3DES.

C. AES can use a 168-bit key for encryption.

D. AES can use a 256-bit key for encryption.

E. AES encrypts and decrypts a key three times in sequence.

Correct Answer: BD

QUESTION 7:

A network administrator configures Dynamic ARP Inspection on a switch. After Dynamic ARP Inspection is applied, all users on that switch are unable to communicate with any destination. The network administrator checks the interface status of all interfaces, and there is no err-disabled interface.

What is causing this problem?

A. DHCP snooping has not been enabled on all VLANs.

B. The ip arp inspection limit command is applied on all interfaces and is blocking the traffic of all users.

C. Dynamic ARP Inspection has not been enabled on all VLANs

D. The no ip arp inspection trust command is applied on all user host interfaces

Correct Answer: D

Dynamic ARP inspection (DAI) is a security feature that validates ARP packets in a network. It intercepts, logs, and discards ARP packets with invalid IP-to-MAC address bindings. This capability protects the network from certain man-in-the-middle attacks. After enabling DAI, all ports become untrusted ports.

QUESTION 8:

An engineer is configuring AMP for endpoints and wants to block certain files from executing. Which outbreak control method is used to accomplish this task?

A. device flow correlation

B. simple detections

C. application blocking list

D. advanced custom detections

Correct Answer: C

QUESTION 9:

A Cisco ESA network administrator has been tasked to use a newly installed service to help create policy based on the reputation verdict. During testing, it is discovered that the Cisco ESA is not dropping files that have an undetermined verdict.

What is causing this issue?

A. The policy was created to send a message to quarantine instead of drop

B. The file has a reputation score that is above the threshold

C. The file has a reputation score that is below the threshold

D. The policy was created to disable file analysis

Correct Answer: D

Maybe the “newly installed service” in this Qmentions about Advanced Malware Protection (AMP) can be used along with ESA. AMP allows superior protection across the attack continuum.+ File Reputation? captures a fingerprint of each file as it traverses the ESA and sends it to AMP\’s cloud-based intelligence network for a reputation verdict.

Given these results, you can automatically block malicious files and apply an administrator-defined policy.+ File Analysis? provides the ability to analyze unknown files that are traversing the ESA. A highly secure sandbox environment enables AMP to glean precise details about the file\’s behavior and to combine that data with detailed human and machine analysis to determine the file\’s threat level.

This disposition is then fed into AMP cloud-based intelligence network and used to dynamically update and expand the AMP cloud data set for enhanced protection

QUESTION 10:

A network engineer is deciding whether to use stateful or stateless failover when configuring two ASAs for high availability.

What is the connection status in both cases?

A. need to be re-established with stateful failover and preserved with stateless failover

B. preserved with stateful failover and need to be reestablished with stateless failover

C. preserved with both stateful and stateless failover

D. need to be re-established with both stateful and stateless failover

Correct Answer: B

QUESTION 11:

Which two preventive measures are used to control cross-site scripting? (Choose two)

A. Enable client-side scripts on a per-domain basis.

B. Incorporate contextual output encoding/escaping.

C. Disable cookie inspection in the HTML inspection engine.

D. Run untrusted HTML input through an HTML sanitization engine.

E. Same Site cookie attribute should not be used.

Correct Answer: AB

QUESTION 12:

Which type of encryption uses a public key and a private key?

A. Asymmetric

B. Symmetric

C. Linear

D. Nonlinear

Correct Answer: A

QUESTION 13:

Which two services must remain on-premises equipment when a hybrid email solution is deployed? (Choose two)

A. DDoS

B. antispam

C. antivirus

D. encryption

E. DLP

Correct Answer: DE

Reference:
https://www.cisco.com/c/dam/en/us/td/docs/security/ces/overview_guide/Cisco_Cloud_Hyb
rid_Email_Security_Overview_Guide.pdf


PS. Download the latest 350-701 exam practice questions above: https://drive.google.com/file/d/1H7khQ3oU9u9JlTS0T4dxFAPVFsGaHZNX/

Take this practice session to learn some of the latest 350-701 exam facts! Improve your strength!
Now, use 350-701 dumps with PDF and VCE: https://www.leads4pass.com/350-701.html (521 Q&A), to help you pass the exam 100% successfully.