Cisco 300-740 SCAZT Exam Questions Instant Access

Question 1

Refer to the exhibit.

Refer to the exhibit. An engineer must integrate Cisco Cloudlock with Salesforce in an organization. Despite the engineer's successful execution of the Salesforce integration with Cloudlock, the administrator still lacks the necessary visibility. What should be done to meet the requirement?

AFrom Salesforce, configure the service parameters.

BFrom Salesforce, enable the View All Data permission.

CFrom Cloudlock, configure the service parameters.

DFrom Cloudlock, enable the View All Data permission.

Answer : B

Question 2

An organization is distributed across several sites. Each site is connected to the main HQ using site-to-site VPNs implemented using Secure Firewall Threat Defense. Which functionality must be implemented if the security manager wants to send SaaS traffic directly to the internet?

AMulti-instances

BIPsec tunnels

CPolicy-based routing

DECMP routing

Answer : C

Question 3

A recent InfraGard news release indicates the need to establish a risk ranking for all on-premises and cloud services. The ACME Corporation already performs risk assessments for on-premises services and has applied a risk ranking to them. However, the cloud services that were used lack risk rankings. What Cisco Umbrella function should be used to meet the requirement?

ASecure Internet Gateway

BDomain Name Server Filtering

CURL Categorization by Talos

DApp Discovery

Answer : D

Question 4

Which attack mitigation must be in place to prevent an attacker from authenticating to a service using a brute force attack?

AForced password change every 6 months

BUse of a 100 ms delay between each authentication

CUse of a password manager

DUse of multifactor authentication for all accounts

Answer : D

Question 5

An engineer is configuring multifactor authentication using Duo. The implementation must use Duo Authentication Proxy and the Active Directory as an identity source. The company uses Azure and a local Active Directory. Which configuration is needed to meet the requirement?

AConfigure the Identity Source as 'SAML' on the Single Sign-On tab in the Duo Admin Panel, and configure the forwarding proxy as 'local' for the Identity Source.

BConfigure the Identity Source as 'SAML' on the Single Sign-On tab, and configure the authentication proxy with the '[cloud]' section.

CConfigure the Identity Source as 'Active Directory' on the Single Sign-On tab in the Duo Admin Panel, and configure the permit list to 'Local database'.

DConfigure the Identity Source as 'Active Directory' on the Single Sign-On tab, and configure the authentication proxy with the '[sso]' section.

Answer : D

Question 6

What helps prevent drive-by compromise?

AAd blockers

BVPN

CIncognito browsing

DBrowsing known websites

Answer : A

Question 7

How does Cisco XDR perform threat prioritization by using its visibility across multiple platforms?

ABy assigning priority based on the detection platform

BBy correlating detection risk and asset value at risk

CBy prioritizing threats based on their frequency across platforms

DBy using a fixed priority system for all platforms

Answer : B

Cisco Designing and Implementing Secure Cloud Access for Users and Endpoints 300-740 SCAZT Exam Questions