350-701 Free Practice Test

- (Exam Topic 3)
Which two Cisco ISE components must be configured for BYOD? (Choose two.)

1. A. local WebAuth
2. B. central WebAuth
3. C. null WebAuth
4. D. guest
5. E. dual

Correct Answer: BD

- (Exam Topic 3)
Which capability is provided by application visibility and control?

1. A. reputation filtering
2. B. data obfuscation
3. C. data encryption
4. D. deep packet inspection

Correct Answer: D

- (Exam Topic 3)
Which command is used to log all events to a destination colector 209.165.201.107?

1. A. CiscoASA(config-pmap-c)#flow-export event-type flow-update destination 209.165.201.10
2. B. CiscoASA(config-cmap)# flow-export event-type all destination 209.165.201.
3. C. CiscoASA(config-pmap-c)#flow-export event-type all destination 209.165.201.10
4. D. CiscoASA(config-cmap)#flow-export event-type flow-update destination 209.165.201.10

Correct Answer: C

- (Exam Topic 1)
Which two descriptions of AES encryption are true? (Choose two)

1. A. AES is less secure than 3DES.
2. B. AES is more secure than 3DES.
3. C. AES can use a 168-bit key for encryption.
4. D. AES can use a 256-bit key for encryption.
5. E. AES encrypts and decrypts a key three times in sequence.

Correct Answer: BD

- (Exam Topic 3)
A company identified a phishing vulnerability during a pentest What are two ways the company can protect employees from the attack? (Choose two.)

1. A. using Cisco Umbrella
2. B. using Cisco ESA
3. C. using Cisco FTD
4. D. using an inline IPS/IDS in the network
5. E. using Cisco ISE

Correct Answer: AB