Cisco 350-701 Quiz 17 Topic 13 Questions 81-85

Question: 1

After a recent breach, an organization determined that phishing was used to gain initial access to the network before regaining persistence. The information gained from the phishing attack was a result of users visiting known malicious websites. What must be done in order to prevent this from happening in the future?

AModify an access policy

BModify identification profiles

CModify outbound malware scanning policies

DModify web proxy settings

Show Answer

Question: 2

What provides visibility and awareness into what is currently occurring on the network?

ACMX

BWMI

CPrime Infrastructure

DTelemetry

Show Answer

Question: 3

An engineer used a posture check on a Microsoft Windows endpoint and discovered that the MS17-010 patch was not installed, which left the endpoint vulnerable to WannaCry ransomware. Which two solutions mitigate the risk of this ransomware infection? (Choose two.)

AConfigure a posture policy in Cisco Identity Services Engine to install the MS17-010 patch before allowing access on the
network.

BSet up a profiling policy in Cisco Identity Service Engine to check and endpoint patch level before allowing access on the network.

CConfigure a posture policy in Cisco Identity Services Engine to check that an endpoint patch level is met before allowing access on the network.

DConfigure endpoint firewall policies to stop the exploit traffic from being allowed to run and replicate throughout the network.

ESet up a well-defined endpoint patching strategy to ensure that endpoints have critical vulnerabilities patched in a timely fashion

Show Answer

Question: 4

Which two descriptions of AES encryption are true? (Choose two.)

AAES is less secure than 3DES

BAES is more secure than 3DES

CAES can use a 168-bit key for encryption.

DAES can use a 256-bit key for encryption.

EAES encrypts and decrypts a key three times in sequence

Show Answer

Question: 5

Refer to the exhibit.

q5_350-701

A network administrator configures command authorization for the admm5 user. What is the admin5 user able to do on HQ_Router after this configuration?

Acomplete no configurations

Badd subinterfaces

Ccomplete all configurations

Dset the IP address of an interface

Show Answer

Cisco 350-701 Quiz:17 Topic:13 Questions:81-85