Free Access to Cisco.350-701.v2025-02-21.q424 with Valid Practice Test (Page 2)

Question 1

A network engineer is configuring NetFlow top talkers on a Cisco router Drag and drop the steps in the process from the left into the sequence on the right

Question 2

Which two criteria must a certificate meet before the WSA uses it to decrypt application traffic? (Choose two.)

A.It must include the current date.
B.It must reside in the trusted store of the WSA.
C.It must reside in the trusted store of the endpoint.
D.It must have been signed by an internal CA.
E.it must contain a SAN.

Correct Answer: B,E

The WSA uses a root certificate and a private key to decrypt HTTPS traffic. The root certificate must reside in the trusted store of the WSA, and it must be able to sign server certificates on the fly. The server certificates that the WSA generates must contain a SAN (Subject Alternative Name) field, which specifies the hostnames or IP addresses that the certificate is valid for. The SAN field is required by modern browsers and applications to verify the identity of the server. If the WSA does not include a SAN field in the server certificate, the browser or application may reject the connection or display a warning message.
The other options are not correct because:
* A. The current date is not a criterion for the WSA to use a certificate to decrypt application traffic. The WSA checks the validity period of the certificate, which includes the start date and the end date. The current date must be within the validity period, but it does not have to be the same as the start date or the end date.
* C. The root certificate that the WSA uses to decrypt HTTPS traffic does not have to reside in the trusted store of the endpoint. However, the endpoint must trust the root certificate in order to accept the server certificate that the WSA generates. This can be achieved by manually installing the root certificate on the endpoint, or by using a group policy or a certificate management system to distribute the root certificate to the endpoints.
* D. The root certificate that the WSA uses to decrypt HTTPS traffic does not have to be signed by an internal CA. The WSA can generate its own self-signed root certificate, or it can use a root certificate that is signed by an external CA. However, the root certificate must be trusted by the endpoints, as explained in option C.
References := : WSA Certificate Usage for HTTPS Decryption : [User Guide for AsyncOS 12.0 for Cisco Web Security Appliances - GD (General Deployment) - Create Decryption Policies to Control HTTPS Traffic]

Question 3

Refer to the exhibit.

What function does the API key perform while working with https://api.amp.cisco.com/v1/computers?

A.plays dent ID
B.HTTP authentication
C.HTTP authorization
D.imports requests

Question 4

Refer to the exhibit.

An engineer configured wired 802.1x on the network and is unable to get a laptop to authenticate. Which port configuration is missing?

A.authentication open
B.dot1x pae authenticator
C.dotlx reauthentication
D.cisp enable

Question 5

What is the difference between EPP and EDR?

A.EPP focuses primarily on threats that have evaded front-line defenses that entered the environment.
B.Having an EPP solution allows an engineer to detect, investigate, and remediate modern threats.
C.Having an EDR solution gives an engineer the capability to flag offending files at the first sign of malicious behavior.
D.EDR focuses solely on prevention at the perimeter.

Question 1

Question 2

Question 3

Question 4

Question 5

Download PDF File