350-701 Online Practice Questions and Answers

What is a feature of the open platform capabilities of Cisco DNA Center?

A. intent-based APIs

B. automation adapters

C. domain integration

D. application adapters

What is the function of Cisco Cloudlock for data security?

A. data loss prevention

B. controls malicious cloud apps

C. detects anomalies

D. user and entity behavior analytics

A network administrator configures Dynamic ARP Inspection on a switch. After Dynamic ARP Inspection is applied, all users on that switch are unable to communicate with any destination. The network administrator checks the interface status of all interfaces, and there is no err-disabled interface. What is causing this problem?

A. DHCP snooping has not been enabled on all VLANs.

B. The ip arp inspection limit command is applied on all interfaces and is blocking the traffic of all users.

C. Dynamic ARP Inspection has not been enabled on all VLANs

D. The no ip arp inspection trust command is applied on all user host interfaces

Refer to the exhibit.

An administrator is adding a new Cisco FTD device to their network and wants to manage it with Cisco FMC. The Cisco FTD is not behind a NAT device. Which command is needed to enable this on the Cisco FTD?

A. configure manager add DONTRESOLVE kregistration key>

B. configure manager add 16

C. configure manager add DONTRESOLVE FTD123

D. configure manager add

An engineer must modify a policy to block specific addresses using Cisco Umbrella. The policy is created already and is actively u: of the default policy elements. What else must be done to accomplish this task?

A. Add the specified addresses to the identities list and create a block action.

B. Create a destination list for addresses to be allowed or blocked.

C. Use content categories to block or allow specific addresses.

D. Modify the application settings to allow only applications to connect to required addresses.

What does endpoint isolation in Cisco AMP for Endpoints security protect from?

A. an infection spreading across the network

B. a malware spreading across the user device

C. an infection spreading across the LDAP or Active Directory domain from a user account

D. a malware spreading across the LDAP or Active Directory domain from a user account

What is a feature of NetFlow Secure Event Logging?

A. It exports only records that indicate significant events in a flow.

B. It filters NSEL events based on the traffic and event type through RSVP.

C. It delivers data records to NSEL collectors through NetFlow over TCP only.

D. It supports v5 and v8 templates.

Refer to the exhibit.

A network engineer is testing NTP authentication and realizes that any device synchronizes time with this router and that NTP authentication is not enforced. What is the cause of this issue?

A. The key was configured in plain text.

B. NTP authentication is not enabled.

C. The hashing algorithm that was used was MD5. which is unsupported.

D. The router was not rebooted after the NTP configuration updated.

In which two ways does the Cisco Advanced Phishing Protection solution protect users? (Choose two.)

A. It prevents use of compromised accounts and social engineering.

B. It prevents all zero-day attacks coming from the Internet.

C. It automatically removes malicious emails from users' inbox.

D. It prevents trojan horse malware using sensors.

E. It secures all passwords that are shared in video conferences.

An engineer must configure Cisco AMP for Endpoints so that it contains a list of files that should not be executed by users. These files must not be quarantined. Which action meets this configuration requirement?

A. Modify the advanced custom detection list to include these files.

B. Add a list for simple custom detection.

C. Identify the network IPs and place them in a blocked list.

D. Create an application control blocked applications list.