Free Access to Cisco.350-701.v2025-02-21.q424 with Valid Practice Test (Page 41)

Question 196

Refer to the exhibit.

A network administrator configures command authorization for the admin5 user. What is the admin5 user able to do on HQ_Router after this configuration?

A.set the IP address of an interface
B.complete no configurations
C.complete all configurations
D.add subinterfaces

Question 197

Which feature within Cisco Umbrella allows for the ability to inspect secure HTTP traffic?

A.File Analysis
B.SafeSearch
C.SSL Decryption
D.Destination Lists

Question 198

What is the function of the Context Directory Agent?

A.maintains users' group memberships
B.relays user authentication requests from Web Security Appliance to Active Directory
C.reads the Active Directory logs to map IP addresses to usernames
D.accepts user authentication requests on behalf of Web Security Appliance for user identification

Correct Answer: C

Explanation Cisco Context Directory Agent (CDA) is a mechanism that maps IP Addresses to usernames in order to allow security gateways to understand which user is using which IP Address in the network, so those security gateways can now make decisions based on those users (or the groups to which the users belong to). CDA runs on a Cisco Linux machine; monitors in real time a collection of Active Directory domain controller (DC) machines for authentication-related events that generally indicate user logins; learns, analyzes, and caches mappings of IP Addresses and user identities in its database; and makes the latest mappings available to its consumer devices. Reference: https://www.cisco.com/c/en/us/td/docs/security/ibf/cda_10/Install_Config_guide/cda10/ cda_oveviw.html Cisco Context Directory Agent (CDA) is a mechanism that maps IP Addresses to usernames in order to allow security gateways to understand which user is using which IP Address in the network, so those security gateways can now make decisions based on those users (or the groups to which the users belong to).
CDA runs on a Cisco Linux machine; monitors in real time a collection of Active Directory domain controller (DC) machines for authentication-related events that generally indicate user logins; learns, analyzes, and caches mappings of IP Addresses and user identities in its database; and makes the latest mappings available to its consumer devices.
Reference:
Explanation Cisco Context Directory Agent (CDA) is a mechanism that maps IP Addresses to usernames in order to allow security gateways to understand which user is using which IP Address in the network, so those security gateways can now make decisions based on those users (or the groups to which the users belong to). CDA runs on a Cisco Linux machine; monitors in real time a collection of Active Directory domain controller (DC) machines for authentication-related events that generally indicate user logins; learns, analyzes, and caches mappings of IP Addresses and user identities in its database; and makes the latest mappings available to its consumer devices. Reference: https://www.cisco.com/c/en/us/td/docs/security/ibf/cda_10/Install_Config_guide/cda10/ cda_oveviw.html

Question 199

An administrator is configuring a DHCP server to better secure their environment. They need to be able to ratelimit the traffic and ensure that legitimate requests are not dropped. How would this be accomplished?

A.Set a trusted interface for the DHCP server
B.Set the DHCP snooping bit to 1
C.Add entries in the DHCP snooping database
D.Enable ARP inspection for the required VLAN

Question 200

Which proxy mode must be used on Cisco WSA to redirect TCP traffic with WCCP?

A.redirection
B.proxy gateway
C.transparent
D.forward

Question 196

Question 197

Question 198

Question 199

Question 200

Download PDF File