Cisco 300-720 SESA Exam Questions Instant Access

Question 1

Which functionality is impacted if the assigned certificate under one of the IP interfaces is modified?

Atraffic between the Cisco Secure Email Gateway and the LDAP server

Bemails being delivered from the Cisco Secure Email Gateway

CHTTPS traffic when connecting to the web user interface of the Cisco Secure Email Gateway

Demails being received by the Cisco Secure Email Gateway

Answer : C

If the assigned certificate under one of the IP interfaces is modified, then the HTTPS traffic when connecting to the web user interface of the Cisco Secure Email Gateway will be impacted. The administrator must ensure that the certificate is valid and trusted by the browser or client that is used to access the web user interface. Otherwise, the connection may fail or generate a warning message.Reference: [Cisco Secure Email Gateway Administrator Guide - Configuring Certificates]

Question 2

Refer to the exhibit.

Refer to the exhibit. Which configuration on the scan behavior must be updated to allow the attachment to be scanned on the Cisco ESA?

AAdd an additional mapping for attachment type for zip files.

BEnable assume match pattern if the email was not scanned for any reason.

CIncrease the maximum recursion depth from 5 to a larger value.

DIncrease the maximum attachment size to scan to a larger value.

Answer : D

The maximum attachment size to scan is a configuration on the scan behavior that determines the maximum size of an attachment that Cisco ESA will scan for viruses and malware. If an attachment exceeds this size, Cisco ESA will apply the configured action for unscannable messages, such as deliver, drop, or quarantine.

To allow the attachment to be scanned on the Cisco ESA, this configuration must be updated to a larger value than the attachment size, which is 10 MB according to the message header.

The other options are not valid configurations to allow the attachment to be scanned on the Cisco ESA, because they do not affect the maximum attachment size to scan.

Question 3

What are the two different phases in the process of Cisco Secure Email Gateway performing S/MIME encryption? (Choose two.)

AAttach the encrypted public key to the message

BEncrypt the message body using the session key

CSend the encrypted message to the sender

DAttach the encrypted symmetric key to the message

ECreate a pseudo-random session key.

Answer : D, E

Question 4

What is the function of authenticating SMTP sessions using client certificates?

AUsers must configure a mail client to send messages through a secure SSL connection and accept a server certificate from the appliance.

BIf the certificate is valid, the Secure Email Gateway allows an SMTP connection from the mail client over TLS.

CIf the Secure Email Gateway is configured to require users to provide a certificate when sending mail, no exceptions are allowed for any users.

DThe Secure Email Gateway requests a client certificate from a user's mail client during connection to the appliance.

Answer : D

Question 5

What is the default HTTPS port when configuring spam quarantine on Cisco ESA?

A83

B82

C443

D80

Answer : A

in the spam quarantine section, you can configure settings for access to the spam quarantine, and by default, HTTP uses port 82 and HTTPS uses port 83.

Question 6

Which two components form the graymail management solution in Cisco ESA? (Choose two.)

Acloud-based unsubscribe service

Buniform unsubscription management interface for end users

Csecure subscribe option for end users

Dintegrated graymail scanning engine

Eimproved mail efficacy

Answer : A, D

The graymail management solution in the appliance comprises of two components: an integrated graymail scanning engine and a cloud-based Unsubscribe Service. The integrated graymail scanning engine identifies graymail messages using various criteria and assigns them to different categories. The cloud-based Unsubscribe Service provides an easy mechanism for end users to unsubscribe from unwanted messages by checking the reputation of the unsubscribe links and performing the unsubscribe process on behalf of the end user.

Question 7

A Cisco ESA administrator has noticed that new messages being sent to the Centralized Policy Quarantine are being released after one hour. Previously, they were being held for a day before being released.

What was configured that caused this to occur?

AThe retention period was changed to one hour.

BThe threshold settings were set to override the clock settings.

CThe retention period was set to default.

DThe threshold settings were set to default.

Answer : C

You can configure Policy, Virus, and Outbreak Quarantines in any one of the following ways:

Choose Quarantine > Other Quarantine > View > +.

Choose Monitor > Policy, Virus, and Outbreak Quarantines and do one of the following.

Click Add Policy Quarantine.

Keep the following in mind, changing the retention time of the File Analysis quarantine from the default of one hour is not recommended.

https://www.cisco.com/c/en/us/td/docs/security/esa/esa14-0/user_guide/b_ESA_Admin_Guide_14-0/b_ESA_Admin_Guide_12_1_chapter_011111.html?bookSearch=true

Cisco Securing Email with Cisco Email Security Appliance 300-720 SESA Exam Questions