Regenerate Securing Email With Cisco Email Security Appliance (SESA) 300-720 Questions

NEW QUESTION 1
When DKIM signing is configured, which DNS record must be updated to load the DKIM public signing key?

• A. AAAA record
• B. PTR record
• C. TXT record
• D. MX record

Answer: B

Explanation:
37 Which attack is mitigated by using Bounce Verification?
A. spoof
B. denial of service
C. eavesdropping
D. smurf

NEW QUESTION 2
Which type of attack is prevented by configuring file reputation filtering and file analysis features?

• A. denial of service
• B. zero-day
• C. backscatter
• D. phishing

Answer: B

NEW QUESTION 3
Which two are configured in the DMARC verification profile? (Choose two.)

• A. name of the verification profile
• B. minimum number of signatures to verify
• C. ESA listeners to use the verification profile
• D. message action into an incoming or outgoing content filter
• E. message action to take when the policy is reject/quarantine

Answer: AE

NEW QUESTION 4
What is the default behavior of any listener for TLS communication?

• A. preferred-verify
• B. off
• C. preferred
• D. required

Answer: B

NEW QUESTION 5
Which process is skipped when an email is received from safedomain.com, which is on the safelist?

• A. message filter
• B. antivirus scanning
• C. outbreak filter
• D. antispam scanning

Answer: A

NEW QUESTION 6
Which SMTP extension does Cisco ESA support for email security?

• A. ETRN
• B. UTF8SMTP
• C. PIPELINING
• D. STARTTLS

Answer: D

NEW QUESTION 7
When outbreak filters are configured, which two actions are used to protect users from outbreaks? (Choose two.)

• A. redirect
• B. return
• C. drop
• D. delay
• E. abandon

Answer: AD

NEW QUESTION 8
Email encryption is configured on a Cisco ESA that uses CRES.
Which action is taken on a message when CRES is unavailable?

• A. It is requeued.
• B. It is sent in clear text.
• C. It is dropped and an error message is sent to the sender.
• D. It is encrypted by a Cisco encryption appliance.

Answer: B

NEW QUESTION 9
What are two phases of the Cisco ESA email pipeline? (Choose two.)

• A. reject
• B. workqueue
• C. action
• D. delivery
• E. quarantine

Answer: BD

NEW QUESTION 10
Which two actions are configured on the Cisco ESA to query LDAP servers? (Choose two.)

• A. accept
• B. relay
• C. delay
• D. route
• E. reject

Answer: AD

NEW QUESTION 11
Which two certificate authority lists are available in Cisco ESA? (Choose two.)

• A. default
• B. system
• C. user
• D. custom
• E. demo

Answer: BD

NEW QUESTION 12
Which benefit does enabling external spam quarantine on Cisco SMA provide?

• A. ability to back up spam quarantine from multiple Cisco ESAs to one central console
• B. access to the spam quarantine interface on which a user can release, duplicate, or delete
• C. ability to scan messages by using two engines to increase a catch rate
• D. ability to consolidate spam quarantine data from multiple Cisco ESA to one central console

Answer: D

NEW QUESTION 13
When email authentication is configured on Cisco ESA, which two key types should be selected on the signing profile? (Choose two.)

• A. DKIM
• B. Public Keys
• C. Domain Keys
• D. Symmetric Keys
• E. Private Keys

Answer: AC

NEW QUESTION 14
When virtual gateways are configured, which two distinct attributes are allocated to each virtual gateway address? (Choose two.)

• A. domain
• B. IP address
• C. DNS server address
• D. DHCP server address
• E. external spam quarantine

Answer: AB

NEW QUESTION 15
Which two components form the graymail management solution in Cisco ESA? (Choose two.)

• A. cloud-based unsubscribe service
• B. uniform unsubscription management interface for end users
• C. secure subscribe option for end users
• D. integrated graymail scanning engine
• E. improved mail efficacy

Answer: AD

NEW QUESTION 16
When the Spam Quarantine is configured on the Cisco ESA, what validates end-users via LDAP during login to the End-User Quarantine?

• A. Enabling the End-User Safelist/Blocklist feature
• B. Spam Quarantine External Authentication Query
• C. Spam Quarantine End-User Authentication Query
• D. Spam Quarantine Alias Consolidation Query

Answer: C

NEW QUESTION 17
What is the order of virus scanning when multilayer antivirus scanning is configured?

• A. The default engine scans for viruses first and the McAfee engine scans for viruses second.
• B. The Sophos engine scans for viruses first and the McAfee engine scans for viruses second.
• C. The McAfee engine scans for viruses first and the default engine scans for viruses second.
• D. The McAfee engine scans for viruses first and the Sophos engine scans for viruses second.

Answer: C

NEW QUESTION 18
DRAG DROP
Drag and drop the AsyncOS methods for performing DMARC verification from the left into the correct order on the right.
Select and Place:

• A. Mastered
• B. Not Mastered

Answer: A

Explanation:

NEW QUESTION 19
Which method enables an engineer to deliver a flagged message to a specific virtual gateway address in the most flexible way?

• A. Set up the interface group with the flag.
• B. Issue the altsrchost command.
• C. Map the envelope sender address to the host.
• D. Apply a filter on the message.

Answer: B

NEW QUESTION 20
What is the default HTTPS port when configuring spam quarantine on Cisco ESA?

• A. 83
• B. 82
• C. 443
• D. 80

Answer: A

NEW QUESTION 21
Which suboption must be selected when LDAP is configured for Spam Quarantine End-User Authentication?

• A. Designate as the active query
• B. Update Frequency
• C. Server Priority
• D. Entity ID

Answer: A

NEW QUESTION 22
......