CISCO CCNP SECURITY 300-720 CERTIFICATION STUDY GUIDE
NWEXAM.COM Get complete detail on NS0-527 exam guide to crack NetApp Certified Implementation Engineer Data Protection. You can collect all information on NS0-527 tutorial, practice test, books, study material, exam questions, and syllabus. Firm your knowledge on NetApp Certified Implementation Engineer - Data Protection and get ready to crack NS0-527 certification. Explore all information on NS0-527 exam with number of questions, passing percentage and time duration to complete test.
www.nwexam.com
Cisco CCNP Security 300-720 Certification Study Guide Cisco 300-720 Certification Exam Details Cisco 300-720 certifications are globally accepted and add significant value to any IT professional. The certification gives you a profound understanding of all the workings of the network models and the devices that are utilized with it. NWexam.com is proud to provide you the best Cisco Exam Guides.
The Cisco 300-720 Exam is challenging, and thorough preparation is essential for success. This cert guide is designed to help you prepare for the CCNP Security certification exam. It contains a detailed list of the topics covered on the Professional exam. These guidelines for the SESA will help guide you through the study process for your certification.
300-720 SESA Sample Questions
1
www.nwexam.com
To obtain Securing Email with Cisco Email Security Appliance certification, you are required to pass SESA 300-720 exam. This exam is created keeping in mind the input of professionals in the industry and reveals how Cisco products are used in organizations across the world.
300-720 Securing Email with Cisco Email Security Appliance Exam Summary ● ● ● ● ● ● ● ● ●
Exam Name: Securing Email with Cisco Email Security Appliance Exam Code: 300-720 SESA Exam Price: $300 (USD) Duration: 90 minutes Number of Questions: 55-65 Passing Score: Variable (750-850 / 1000 Approx.) Exam Registration: PEARSON VUE Sample Questions: Cisco 300-720 Sample Questions Recommended Practice: Cisco Certified Specialist Email Content Security Practice Test
● Recommended Training: Securing Email with Cisco Email Security Appliance (SESA)
Topics covered in the Cisco CCNP Security 300720 Exam Section
Weight Objectives - Configure Cisco Email Security Appliance features
Cisco Email Security Appliance Administration
15%
Hardware performance specifications Initial configuration process Routing and delivery features GUI
- Describe centralized services on a Cisco Content SMA - Configure mail policies
300-720 SESA Sample Questions
Incoming and outgoing messages User matching
2
www.nwexam.com
Section
Weight Objectives Message splintering
Spam Control with Talos 15% SenderBase and Antispam
- Control spam with Talos SenderBase and Antispam - Describe graymail management solution - Configure file reputation filtering and file analysis features - Implement malicious or undesirable URLs protection - Describe the bounce verification feature - Describe the functions and capabilities of content filters - Create text resources such as content dictionaries, disclaimers, and templates
Content and Message filters 20%
Dictionaries filter rules Text resources management
- Configure message filters components, rules, processing order and attachment scanning - Configure scan behavior - Configure the Cisco ESA to scan for viruses using Sophos and McAfee scanning engines - Configure outbreak filters - Configure Data Loss Prevention (DLP) - Configure and verify LDAP servers and queries (Queries and Directory Harvest Attack) - Understand spam quarantine functions
LDAP and SMTP Sessions 15%
- Understand SMTP functionality
Email Authentication and Encryption
20%
300-720 SESA Sample Questions
Authentication for end-users of spam quarantine Utilize spam quarantine alias to consolidate queries
Email pipeline Sender and recipient domains SMTP session authentication using client certificates SMTP TLS authentication TLS email encryption
- Configure Domain Keys and DKIM signing - Configure SPF and SIDF 3
www.nwexam.com
Section
System Quarantines and Delivery Methods
Weight Objectives - Configure DMARC verification - Configure forged email detection - Configure email encryption - Describe S/MIME security services and communication encryption with other MTAs - Manage certificate authorities - Configure quarantine (spam, policy, virus, and outbreak) - Utilize safelists and blocklists to control email 15% delivery - Manage messages in local or external spam quarantines - Configure virtual gateways
What type of questions are on the Cisco 300-720 exams? ● ● ● ● ●
Single answer multiple choice Multiple answer multiple choice Drag and Drop (DND) Router Simulation Testlet
CCNP Security 300-720 Practice Exam Questions. Grab an understanding from these Cisco 300-720 sample questions and answers and improve your 300-720 exam preparation towards attaining a Securing Email with Cisco Email Security Appliance Certification. Answering these sample questions will make you familiar with the types of questions you can expect on the actual exam. Doing practice with CCNP Security SESA questions and answers before the exam as much as possible is the key to passing the Cisco 300-720 certification exam.
300-720 Securing Email with Cisco Email Security Appliance Sample Questions:01. What is the default HTTPS port when configuring spam quarantine on Cisco ESA? a) 83 b) 82 c) 443 d) 80 300-720 SESA Sample Questions
4
www.nwexam.com
02. An administrator is trying to enable centralized PVO but receives the error, "Unable to proceed with Centralized Policy, Virus and Outbreak Quarantines configuration as esa1 in Cluster has content filters / DLP actions available at a level different from the cluster level." What is the cause of this error? a) Content filters are configured at the machine-level on esa1 b) DLP is configured at the cluster-level on esa2 c) DLP is configured at the domain-level on esa1 d) DLP is not configured on host1 03. When the Cisco ESA is configured to perform antivirus scanning, what is the default timeout value? a) 30 seconds b) 90 seconds c) 60 seconds d) 120 seconds 04. How does the graymail safe unsubscribe feature function? a) It strips the malicious content of the URI before unsubscribing b) It checks the URI reputation and category and allows the content filter to take an action on it c) It redirects the end user who clicks the unsubscribe button to a sandbox environment to allow a safe unsubscribe d) It checks the reputation of the URI and performs the unsubscribe process on behalf of the end user 05. Which type of attack is prevented by configuring file reputation filtering and file analysis features? a) denial of service b) zero-day c) backscatter d) phishing 06. What are two prerequisites for implementing undesirable URL protection in Cisco ESA? (Choose two.) a) Enable outbreak filters b) Enable email relay c) Enable antispam scanning
300-720 SESA Sample Questions
5
www.nwexam.com
d) Enable port bouncing e) Enable antivirus scanning 07. Which process is skipped when an email is received from safedomain.com, which is on the safelist? a) outbreak filter b) antivirus scanning c) message filter d) antispam scanning 08. What occurs when configuring separate incoming mail policies? a) message splintering b) message exceptions c) message detachment d) message aggregation 09. Which action must be taken before a custom quarantine that is being used can be deleted? a) Delete the quarantine that is assigned to a filter b) Remove the quarantine from the message action of a filter c) Delete only the unused quarantine d) Delete the quarantine that is not assigned to a filter 10. Which two features are applied to either incoming or outgoing mail policies? (Choose two.) a) Indication of Compromise b) application filtering c) outbreak filters d) sender reputation filtering e) antivirus
Solutions: Question 01:- Answer: a Question 02:- Answer: d Question 03:- Answer: c Question 04:- Answer: d Question 05:- Answer: b Question 06:- Answer: a, c Question 07:- Answer: c 300-720 SESA Sample Questions
6
www.nwexam.com
Question 08:- Answer: a Question 09:- Answer: b Question 10:- Answer: c, e Not every IT certification is intended for professionals, but Cisco certification is a great deal. After achieving this Cisco 300-720, you can grab an opportunity to be an IT professional with unique capability and can help the industry or get a good job. Many individuals do the Cisco certifications just for the interest, and that payback as a profession because of the worth of this course.
300-720 SESA Sample Questions
7