350-701 Free Practice Test

- (Exam Topic 3)
Why should organizations migrate to an MFA strategy for authentication?

1. A. Single methods of authentication can be compromised more easily than MFA.
2. B. Biometrics authentication leads to the need for MFA due to its ability to be hacked easily.
3. C. MFA methods of authentication are never compromised.
4. D. MFA does not require any piece of evidence for an authentication mechanism.

Correct Answer: A

- (Exam Topic 3)
Refer to the exhibit.

How does Cisco Umbrella manage traffic that is directed toward risky domains?

1. A. Traffic is proximed through the intelligent proxy.
2. B. Traffic is managed by the security settings and blocked.
3. C. Traffic is managed by the application settings, unhandled and allowed.
4. D. Traffic is allowed but logged.

Correct Answer: B

- (Exam Topic 3)
Which direction do attackers encode data in DNS requests during exfiltration using DNS tunneling?

1. A. inbound
2. B. north-south
3. C. east-west
4. D. outbound

Correct Answer: D

- (Exam Topic 3)
An engineer needs to add protection for data in transit and have headers in the email message Which
configuration is needed to accomplish this goal?

1. A. Provision the email appliance
2. B. Deploy an encryption appliance.
3. C. Map sender !P addresses to a host interface.
4. D. Enable flagged message handling

Correct Answer: D

- (Exam Topic 3)
An organization configures Cisco Umbrella to be used for its DNS services. The organization must be able to block traffic based on the subnet that the endpoint is on but it sees only the requests from its public IP address instead of each internal IP address. What must be done to resolve this issue?

1. A. Set up a Cisco Umbrella virtual appliance to internally field the requests and see the traffic of each IP address
2. B. Use the tenant control features to identify each subnet being used and track the connections within theCisco Umbrella dashboard
3. C. Install the Microsoft Active Directory Connector to give IP address information stitched to the requests in the Cisco Umbrella dashboard
4. D. Configure an internal domain within Cisco Umbrella to help identify each address and create policy from the domains

Correct Answer: A