Cisco 300-725 SWSA Exam Questions Instant Access

Question 1

Which method is used by AMP against zero-day and targeted file-based attacks?

Aanalyzing behavior of all files that are not yet known to the reputation service

Bperiodically evaluating emerging threats as new information becomes available

Cimplementing security group tags

Dobtaining the reputation of known files

Answer : D

https://www.cisco.com/c/en/us/solutions/collateral/enterprise-networks/advanced-malware- protection/solution-overview-c22-734228.html

Question 2

Which configuration option is suitable for explicit mode deployment?

APAC

BWCCP

CITD

DPBR

Answer : A

In explicit-mode deployment, users will point the proxy setting to WSA. This can be done by pointing directly to WSA or via a PAC (Proxy Auto-Config) file.

Question 3

Which IP address and port are used by default to run the system setup wizard?

Ahttp://192.168.42.42:80

Bhttps://192.168.42.42:8080 C. https://192.168.42.10:8443 D. http://192.168.43.42:8080

Answer : B

https://www.cisco.com/c/dam/en/us/td/docs/security/content_security/hardware/x95_series/ Sx95_GSG.pdf (14)

Question 4

Which statement about identification profile default settings on the Cisco WSA is true?

AIdentification profiles do not require authentication

BGuest identification profile should be processed first

CIdentification profiles can include only one user group

DAsyncOS processes identification profiles alphabetically

Answer : A

https://www.cisco.com/c/en/us/td/docs/security/wsa/wsa11-0/user_guide/b_WSA_UserGuide/ b_WSA_UserGuide_chapter_011001.html#con_1415970

Question 5

What is used to configure WSA as an explicit proxy?

AIP Spoofing from router

BNetwork settings from user browser

CWCCP redirection from firewall

DAuto redirection using PBR from switch

Answer : B

https://www.cisco.com/c/en/us/support/docs/security/web-security-appliance/117940-qa-wsa- 00.html

Question 6

Which key is needed to pair a Cisco WSA and Cisco ScanCenter for CTA?

Apublic SSH key that the Cisco WSA generates

Bpublic SSH key that Cisco ScanCenter generates

Cprivate SSH key that Cisco ScanCenter generates

Dprivate SSH key that the Cisco WSA generates

Answer : A

https://www.cisco.com/c/en/us/td/docs/security/wsa/wsa11-0/user_guide/b_WSA_UserGuide/ b_WSA_UserGuide_chapter_010111.html

Question 7

Which response code in the access logs indicates that a transaction was blocked due to policy?

ATCP_DENIED/407

BTCP_DENIED/401

CTCP_DENIED/403

DTCP_DENIED/307

Answer : A

https://docuri.com/download/instructions_59a8d562f581719e12ad43fe_pdf

Cisco Securing the Web with Cisco Web Security Appliance 300-725 SWSA Exam Questions