350-701 Online Practice Questions and Answers

Which telemetry data captures variations seen within the flow, such as the packets TTL, IP/TCP flags, and payload length?

A. interpacket variation

B. software package variation

C. flow insight variation

D. process details variation

Refer to the exhibit.

What is the result of this Python script of the Cisco DNA Center API?

A. adds authentication to a switch

B. adds a switch to Cisco DNA Center

C. receives information about a switch

When a Cisco WSA checks a web request, what occurs if it is unable to match a user- defined policy?

A. It blocks the request.

B. It applies the global policy.

C. It applies the next identification profile policy.

D. It applies the advanced policy.

An engineer is configuring web filtering for a network using Cisco Umbrella Secure Internet Gateway.

The requirement is that all traffic needs to be filtered. Using the SSL decryption feature, which type of certificate should be presented to the end-user to accomplish this goal?

A. third-party

B. self-signed

C. organization owned root

D. SubCA

What are two functions of TAXII in threat intelligence sharing? (Choose two.)

A. determines the "what" of threat intelligence

B. Supports STIX information

C. allows users to describe threat motivations and abilities

D. exchanges trusted anomaly intelligence information

E. determines how threat intelligence information is relayed

Refer to the exhibit.

What will occur when this device tries to connect to the port?

A. 802.1X will not work, but MAB will start and allow the device on the network.

B. 802.1X will not work and the device will not be allowed network access

C. 802 1X will work and the device will be allowed on the network

D. 802 1X and MAB will both be used and ISE can use policy to determine the access level

What is the recommendation in a zero-trust model before granting access to corporate applications and resources?

A. to use multifactor authentication

B. to use strong passwords

C. to use a wired network, not wireless

D. to disconnect from the network when inactive

Refer to the exhibit.

Which configuration item makes it possible to have the AAA session on the network?

A. aaa authentication login console ise

B. aaa authentication enable default enable

C. aaa authorization network default group ise

D. aaa authorization exec default ise

An organization is implementing AAA for their users. They need to ensure that authorization is verified for every command that is being entered by the network administrator. Which protocol must be configured in order to provide this capability?

A. EAPOL

B. SSH

C. RADIUS

D. TACACS+

Which two types of connectors are used to generate telemetry data from IPFIX records in a Cisco Secure Workload implementation? (Choose two.)

A. ADC

B. ERSPAN

C. Cisco ASA

D. NetFlow

E. Cisco Secure Workload