Cisco 300-725 SWSA Exam Questions Instant Access

Question 1

Which certificate format does a Cisco WSA need when HTTPS proxy is configured?

ADER

BCER

CPEM

DCRL

Answer : C

https://community.cisco.com/t5/security-documents/wsa-training-series-how-to-configure-the-https- proxy-on-the/ta-p/3148673

Question 2

Which statement about the SOCKS proxy is true?

ASOCKS is a general purpose proxy

BSOCKS operates on TCP port 80, 443, and 8334

CSOCKS is used only for traffic that is redirected through a firewall

DSOCKS is used for UDP traffic only

Answer : A

http://www.jguru.com/faq/view.jsp?EID=227532

Question 3

What is a benefit of integrating Cisco WSA with TrustSec in ISE?

AThe policy trace tool can be used to match access policies using specific SGT

BTraffic of authenticated users who use 802.1x can be tagged with SGT to identification profiles in a Cisco WSA

CISE can block authentication for users who generate multiple sessions using suspect TCP ports

DUsers in a specific SGT can be denied access to certain social websites.

Answer : D

https://www.cisco.com/c/en/us/td/docs/security/ise/1-3/ISE-WSAIntegrationDoc/b_ISE- WSAIntegration.html

Question 4

What must be configured to require users to click through an acceptance page before they are allowed to go to the Internet through the Cisco WSA?

AEnable End-User Acknowledgement Page and set to Required in Identification Profiles

BEnable End -User URL Filtering Warning Page and set to Required in Identification Profiles

CEnable End-User Acknowledgement Page and set to Required in Access Policies

DEnable End-User URL Filtering Warning Page and set to Required in Access Policies

Answer : C

https://www.cisco.com/c/en/us/td/docs/security/wsa/wsa11-0/user_guide/b_WSA_UserGuide/ b_WSA_UserGuide_chapter_010100.html

Question 5

Which information in the HTTP request is used to determine if it is subject to the referrer exceptions feature in the Cisco WSA?

Aprotocol

Bversion

Cheader

Dpayload

Answer : C

Requests for embedded content usually include the address of the site from which the request originated (this is known as the ''referer'' field in the request's HTTP header). This header information is used to determine categorization of the referred content.

Reference https://www.cisco.com/c/en/us/td/docs/security/wsa/wsa11-0/user_guide/b_WSA_UserGuide/ b_WSA_UserGuide_chapter_01100.html

Question 6

Which two parameters are mandatory to control access to websites with proxy authentication on a Cisco WSA? (Choose two.)

AExternal Authentication

BIdentity Enabled Authentication

CTransparent User Identification

DCredential Encryption

EAuthentication Realm

Answer : D, E

https://www.cisco.com/c/en/us/td/docs/security/wsa/wsa11-7/user_guide/ b_WSA_UserGuide_11_7/b_WSA_UserGuide_11_7_appendix_010111.html

Question 7

A user browses to a company website that is categorized as ''Business and Industry'' and contains a Facebook post. The user cannot see the Facebook post because the category ''Social Networking'' is blocked.

Which configuration allows the user to see the Facebook post?

AOption A

BOption B

COption C

DOption D

Answer : A

https://www.cisco.com/c/en/us/td/docs/security/wsa/wsa11-7/user_guide/ b_WSA_UserGuide_11_7/b_WSA_UserGuide_11_7_chapter_01001.html

Cisco Securing the Web with Cisco Web Security Appliance 300-725 SWSA Exam Questions