Cisco CCNP Security 300-720 Study Guide

Lead4Pass 300-720 dumps Last Update 2023

The latest updated Lead4Pass 300-720 dumps for 2023: https://www.leads4pass.com/300-720.html, contains 94 real exam questions and answers, verified by a professional team, to help you pass the 300-720 SESA certification exam.

Passing the Cisco 300-720 exam is not that simple, you need to go through a lot of practice and preparation before the exam to be really successful, use Lead4Pass 300-720 dumps with PDF and VCE to help you complete all the exercises. Then Use ChatGPT to find out more preparation details, and you can accomplish your goals without fail.

ChatGPT tells you Cisco 300-720 certification exam details:

The Cisco 300-720 exam, also known as the Securing Email with Cisco Email Security Appliance (SESA) exam, is a certification exam that tests your knowledge and skills in securing email communication with the use of the Cisco Email Security Appliance.

The exam consists of 60-70 questions and lasts for 90 minutes.
The questions are presented in various formats, including multiple-choice, drag-and-drop, and simulation questions. The exam is available in English and Japanese.

The topics covered in the exam include:

1. Secure Email Gateway Architecture and Features

2. Cisco Email Security Appliance Installation and Configuration

3. Message Filtering

4. Email Encryption

5. System Administration and Troubleshooting

The exam can be taken at any Pearson VUE testing center, and the cost of the exam is $300 USD.
To prepare for the exam, Cisco offers a range of resources, including self-paced e-learning courses, instructor-led training courses, and study groups.

Practice the latest Cisco 300-720 exam questions from Lead4Pass

TypeNumber of exam questionsExam CodeExam NameLast UpdatedExam Answers
Free15300-720Securing Email with Cisco Email Security Appliance (SESA)300-720 dumpsView
Question 1:

Which suboption must be selected when LDAP is configured for Spam Quarantine End-User Authentication?

A. Designate as the active query

B. Update Frequency

C. Server Priority

D. Entity ID

Reference: https://www.cisco.com/c/en/us/td/docs/security/security_management/sma/sma11-5/user_guide/b_SMA_Admin_Guide_11_5/b_SMA_Admin_Guide_11_5_chapter_01010.html

Question 2:

What are the two phases of the Cisco ESA email pipeline? (Choose two.)

A. reject

B. work queue

C. action

D. delivery

E. quarantine

Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-1/user_guide/b_ESA_Admin_Guide_12_1/b_ESA_Admin_Guide_12_1_chapter_011.pdf (p.1)

Question 3:

A Cisco ESA administrator has several mail policies configured. While testing policy matches using a specific sender, the email was not matching the expected policy. What is the reason for this?

A. The “From” header is checked against all policies in a top-down fashion.

B. The message header with the highest priority is checked against each policy in a top-down fashion.

C. The “To” header is checked against all policies in a top-down fashion.

D. The message header with the highest priority is checked against the Default policy in a top-down fashion.

Question 4:

Which action must be taken before a custom quarantine that is being used can be deleted?

A. Delete the quarantine that is assigned to a filter.

B. Delete the quarantine that is not assigned to a filter.

C. Delete only the unused quarantine.

D. Remove the quarantine from the message action of a filter.

Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_011111.html

Question 5:

Which global setting is configured under Cisco ESA Scan Behavior?

A. minimum attachment size to scan

B. attachment scanning timeout

C. actions for unscannable messages due to attachment type

D. minimum depth of attachment recursion to scan

Reference: https://community.cisco.com/t5/email-security/cisco-ironport-esa-security-services-scan-behavior-impact-on-av/td-p/3923243

Question 6:

Which two are configured in the DMARC verification profile? (Choose two.)

A. the name of the verification profile

B. the minimum number of signatures to verify

C. ESA listeners to use the verification profile

D. message action into an incoming or outgoing content filter

E. message action to take when the policy is reject/quarantine

Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_12_0_chapter_010101.html#task_1231917

Question 7:

A Cisco ESA administrator has noticed that new messages being sent to the Centralized Policy Quarantine are being released after one hour. Previously, they were held for a day before being released. What was configured that caused this to occur?

A. The retention period was changed to one hour.

B. The threshold settings were set to override the clock settings.

C. The retention period was set to default.

D. The threshold settings were set to default.

Question 8:

Which two actions are configured on the Cisco ESA to query LDAP servers? (Choose two.)

A. accept

B. relay

C. delay

D. route

E. reject

Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-0/user_guide_fs/b_ESA_Admin_Guide_11_0/b_ESA_Admin_Guide_chapter_011010.html

Question 9:

Which two configurations are used on multiple LDAP servers to connect with Cisco ESA? (Choose two.)

A. load balancing

B. SLA monitor

C. active-standby

D. failover

E. active-active

You can enter multiple host names to configure the LDAP servers for failover or load-balancing. Separate multiple entries with commas.

Reference: https://www.cisco.com/c/en/us/td/docs/security/ces/user_guide/sma_user_guide/b_SMA_Admin_Guide_ces_11/b_SMA_Admin_Guide_chapter_01010.html

Question 10:

Which two action types are performed by Cisco ESA message filters? (Choose two.)

A. non-final actions

B. filter actions

C. discard actions

D. final actions

E. quarantine actions

Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_01000.html

Question 11:

What is the benefit of implementing URL filtering on the Cisco ESA?

A. removes threats from malicious URLs

B. blacklists spam

C. provides URL reputation protection

D. enhances reputation against malicious URLs

Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118775-technote-esa-00.html

Question 12:

Refer to the exhibit. An engineer is trying to connect to a Cisco ESA using SSH and has been unsuccessful. Upon further inspection, the engineer notices that there is a loss of connectivity to the neighboring switch.

latest 300-720 questions 12

Which connection method should be used to determine the configuration issue?

A. Telnet

B. HTTPS

C. Ethernet

D. serial

Question 13:

Which two statements about configuring message filters within the Cisco ESA are true? (Choose two.)

A. The filters command executed from the CLI is used to configure the message filters.

B. Message filter configuration within the web user interface is located within Incoming Content Filters.

C. The filter config command executed from the CLI is used to configure message filters.

D. Message filters can be configured only from the CLI.

E. Message filters can be configured only from the web user interface.

Reference: https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/213940-esa-using-a-message-filter-to-take-act.html

Question 14:

Which two factors must be considered when message filter processing is configured? (Choose two.)

A. message-filter order

B. lateral processing

C. structure of the combined packet

D. mail policies

E. MIME structure of the message

Reference: https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01000.html

Question 15:

What occurs when configuring separate incoming mail policies?

A. message splintering

B. message exceptions

C. message detachment

D. message aggregation

View answer:

QuestionsQ1Q2Q3Q4Q5Q6Q7Q8Q9Q10Q11Q12Q13Q14Q15
AnswersABDDDBAEDADADADCDADAEA

Get the latest updated 300-720 dumps for 2023: https://www.leads4pass.com/300-720.html (94 Q&A PDF +VCE).

ChatGPT tells you the value of Cisco 300-720 SESA certification

Cisco 300-720 SESA (Securing Email with Cisco Email Security Appliance) certification is designed for professionals who want to specialize in email security.

It validates the knowledge and skills required to configure, manage, and troubleshoot Cisco Email Security Appliances, as well as to implement email security solutions.

The value of Cisco 300-720 SESA certification is that it provides the following benefits:

1. Expertise in Email Security: This certification demonstrates that you have expertise in email security, including threat protection, email encryption, and email filtering. It also validates your ability to configure, manage, and troubleshoot Cisco Email Security Appliances.

2. Career Opportunities: This certification enhances your career opportunities by validating your expertise in email security. It can open up new job opportunities and increase your earning potential.

3. Recognition: Cisco is a well-known and respected brand in the IT industry, and earning a Cisco certification demonstrates your commitment to your profession and your dedication to staying up-to-date with the latest technologies and best practices.

4. Competitive Advantage: Cisco 300-720 SESA certification provides a competitive advantage over non-certified professionals. It demonstrates your commitment to your profession and your willingness to invest in your career development.

5. Professional Growth: This certification also provides opportunities for professional growth by providing access to training, resources, and networking opportunities with other Cisco-certified professionals.

In summary, Cisco 300-720 SESA certification validates your expertise in email security, enhances your career opportunities, provides recognition and competitive advantage, and supports your professional growth.

Prepare for the 300-720 SESA exam: Use the newly updated 300-720 SESA dumps

Lead4pass has updated 300-720 SESA dumps with 94 latest exam questions and answers to help you prepare for the 300-720 SESA exam and successfully pass one of the CCNP Security Concentration exams (300-720 SESA exam).

Use 300-720 VCE dumps and 300-720 PDF dumps to help you practice 300-720 dumps: https://www.leads4pass.com/300-720.html (Total Questions: 94 Q&As), saving you time.

PS. It works equally well for beginners and IT professionals.

Try some of the free 300-720 dumps exam questions online:

New Question 1:

Which SMTP extension does Cisco ESA support for email security?

A. ETRN

B. UTF8SMTP

C. PIPELINING

D. STARTTLS

View Answer


New Question 2:

Which feature utilizes sensor information obtained from Talos intelligence to filter email servers connecting into the Cisco ESA?

A. SenderBase Reputation Filtering

B. Connection Reputation Filtering

C. Talos Reputation Filtering

D. SpamCop Reputation Filtering

View Answer


New Question 3:

Which benefit does enabling external spam quarantine on Cisco SMA provide?

A. ability to back up spam quarantine from multiple Cisco ESAs to one central console

B. access to the spam quarantine interface on which a user can release, duplicate, or delete

C. ability to scan messages by using two engines to increase a catch rate

D. ability to consolidate spam quarantine data from multiple Cisco ESA to one central console

View Answer


New Question 4:

When email authentication is configured on Cisco ESA, which two key types should be selected on the signing profile? (Choose two.)

A. DKIM

B. Public Keys

C. Domain Keys

D. Symmetric Keys

E. Private Keys

View Answer


New Question 5:

What are two phases of the Cisco ESA email pipeline? (Choose two.)

A. reject

B. workqueue

C. action

D. delivery

E. quarantine

View Answer


New Question 6:

Which two action types are performed by Cisco ESA message filters? (Choose two.)

A. non-final actions

B. filter actions

C. discard actions

D. final actions

E. quarantine actions

View Answer


New Question 7:

Which setting affects the aggressiveness of spam detection?

A. protection level

B. spam threshold

C. spam timeout

D. maximum depth of recursion scan

View Answer


New Question 8:

What is the order of virus scanning when multilayer antivirus scanning is configured?

A. The default engine scans for viruses first and the McAfee engine scans for viruses second.

B. The Sophos engine scans for viruses first and the McAfee engine scans for viruses second.

C. The McAfee engine scans for viruses first and the default engine scans for viruses second.

D. The McAfee engine scans for viruses first and the Sophos engine scans for viruses second.

View Answer

If you configure multi-layer anti-virus scanning, the Cisco appliance performs virus scanning with the McAfee engine first and the Sophos engine second. It scans messages using both engines, unless the McAfee engine detects a virus. If the McAfee engine detects a virus, the Cisco appliance performs the anti-virus actions (repairing, quarantining, etc.) defined for the mail policy.


New Question 9:

What are two prerequisites for implementing undesirable URL protection in Cisco ESA? (Choose two.)

A. Enable outbreak filters.

B. Enable email relay.

C. Enable antispam scanning.

D. Enable port bouncing.

E. Enable antivirus scanning.

View Answer


New Question 10:

Which suboption must be selected when LDAP is configured for Spam Quarantine End-User Authentication?

A. Designate as the active query

B. Update Frequency

C. Server Priority

D. Entity ID

View Answer


New Question 11:

What is the maximum message size that can be configured for encryption on the Cisco ESA?

A. 20 MB

B. 25 MB

C. 15 MB

D. 30 MB

View Answer


New Question 12:

An analyst creates a new content dictionary to use with Forged Email Detection. Which entry will be added into the dictionary?

A. mycompany.com

B. Alpha Beta

C. ^Alpha\ Beta$

D. [email protected]

View Answer


New Question 13:

Which process is skipped when an email is received from safedomain.com, which is on the safelist?

A. message filter

B. antivirus scanning

C. outbreak filter

D. antispam scanning

View Answer


New Question 14:

Which two query types are available when an LDAP profile is configured? (Choose two.)

A. proxy consolidation

B. user

C. recursive

D. group

E. routing

View Answer


New Question 15:

Which action is a valid fallback when a client certificate is unavailable during SMTP authentication on Cisco ESA?

A. LDAP Query

B. SMTP AUTH

C. SMTP TLS

D. LDAP BIND

View Answer

Verify the answer:

Numbers:Q1Q2Q3Q4Q5Q6Q7Q8Q9Q10Q11Q12Q13Q14Q15
Answers:DADACBDADBCACAAAADEB

How about the above free 300-720 dumps exam questions? This is just a warm-up. Download 300-720 SESA dumps: https://www.leads4pass.com/300-720.html (PDF + VCE), practice 94 latest questions exam questions and answers, and Help 100% successfully pass the 300-720 SESA exam.

PS. It works equally well for beginners and IT professionals.