top of page
Writer's pictureAnindita

Cisco CCNP Security 300-720 (SESA) Certification Study Guide

Cisco 300-720 SESA Certification Exam Details


Cisco CCNP Security certifications are globally accepted and add significant value to any IT professional. The certification gives you a profound understanding of all the workings of the network models and the devices that are utilized with them. NWexam.com is proud to provide to you the best Cisco Exam Guides.

300-720 pdf, 300-720 questions, 300-720 exam guide, 300-720 practice test, 300-720 books, 300-720 Syllabus, 300-720

The Cisco 300-720 Exam is challenging, and thorough preparation is essential for success. This cert guide is designed to help you prepare for the CCNP Security certification exam. It contains a detailed list of the topics covered on the Professional exam. These guidelines for the SESA will help guide you through the study process for your certification.


To obtain Securing Email with Cisco Email Security Appliance certification, you are required to pass SESA 300-720 exam. This exam is created keeping in mind the input of professionals in the industry and reveals how Cisco products are used in organizations across the world.


300-720 Securing Email with Cisco Email Security Appliance Exam Summary


Exam Name: Securing Email with Cisco Email Security Appliance

Exam Code: 300-720 SESA

Exam Price: $300 (USD)

Duration: 90 minutes

Number of Questions: 55-65

Passing Score: Variable (750-850 / 1000 Approx.)

Exam Registration: PEARSON VUE

Sample Questions: Cisco 300-720 Sample Questions

Topics covered in the Cisco CCNP Security 300-720 Exam


Cisco Email Security Appliance Administration- 15%


- Configure Cisco Email Security Appliance features

● Hardware performance specifications

● Initial configuration process

● Routing and delivery features

● GUI

- Describe centralized services on a Cisco Content SMA

- Configure mail policies

● Incoming and outgoing messages

● User matching

● Message splintering


Spam Control with Talos SenderBase and Antispam- 15%


- Control spam with Talos SenderBase and Antispam

- Describe graymail management solution

- Configure file reputation filtering and file analysis features

- Implement malicious or undesirable URLs protection

- Describe the bounce verification feature


Content and Message filters- 20%


- Describe the functions and capabilities of content filters

- Create text resources such as content dictionaries, disclaimers, and templates

● Dictionaries filter rules

● Text resources management

- Configure message filters components, rules, processing order and attachment scanning

- Configure scan behavior

- Configure the Cisco ESA to scan for viruses using Sophos and McAfee scanning engines

- Configure outbreak filters

- Configure Data Loss Prevention (DLP)


LDAP and SMTP Sessions- 15%


- Configure and verify LDAP servers and queries (Queries and Directory Harvest Attack)

- Understand spam quarantine functions

● Authentication for end-users of spam quarantine

● Utilize spam quarantine alias to consolidate queries

- Understand SMTP functionality

● Email pipeline

● Sender and recipient domains

● SMTP session authentication using client certificates

● SMTP TLS authentication

● TLS email encryption


Email Authentication and Encryption- 20%


- Configure Domain Keys and DKIM signing

- Configure SPF and SIDF

- Configure DMARC verification

- Configure forged email detection

- Configure email encryption

- Describe S/MIME security services and communication encryption with other MTAs

- Manage certificate authorities


System Quarantines and Delivery Methods- 15%


- Configure quarantine (spam, policy, virus, and outbreak)

- Utilize safelists and blocklists to control email delivery

- Manage messages in local or external spam quarantines

- Configure virtual gateways

What type of questions are on the Cisco 300-720 SESA exams?


● Single answer multiple choice

● Multiple answer multiple choice

● Drag and Drop (DND)

● Router Simulation

● Testlet


CCNP Security 300-720 Practice Exam Questions.


Grab an understanding from these Cisco 300-720 sample questions and answers and improve your 300-720 exam preparation towards attaining a Securing Email with Cisco Email Security Appliance Certification. Answering these sample questions will make you familiar with the types of questions you can expect on the actual exam. Doing practice with CCNP Security SESA questions and answers before the exam as much as possible is the key to passing the Cisco 300-720 certification exam.


300-720 Securing Email with Cisco Email Security Appliance Sample Questions:-


01. What is the default HTTPS port when configuring spam quarantine on Cisco ESA?

a) 83

b) 82

c) 443

d) 80

02. An administrator is trying to enable centralized PVO but receives the error, "Unable to proceed with Centralized Policy, Virus and Outbreak Quarantines configuration as esa1 in Cluster has content filters / DLP actions available at a level different from the cluster level."

What is the cause of this error?

a) Content filters are configured at the machine-level on esa1

b) DLP is configured at the cluster-level on esa2

c) DLP is configured at the domain-level on esa1

d) DLP is not configured on host1

03. When the Cisco ESA is configured to perform antivirus scanning, what is the default timeout value?

a) 30 seconds

b) 90 seconds

c) 60 seconds

d) 120 seconds

04. How does the graymail safe unsubscribe feature function?

a) It strips the malicious content of the URI before unsubscribing

b) It checks the URI reputation and category and allows the content filter to take an action on it

c) It redirects the end user who clicks the unsubscribe button to a sandbox environment to allow a safe unsubscribe

d) It checks the reputation of the URI and performs the unsubscribe process on behalf of the end user

05. Which type of attack is prevented by configuring file reputation filtering and file analysis features?

a) denial of service

b) zero-day

c) backscatter

d) phishing

06. What are two prerequisites for implementing undesirable URL protection in Cisco ESA?

(Choose two.)

a) Enable outbreak filters

b) Enable email relay

c) Enable antispam scanning

d) Enable port bouncing

e) Enable antivirus scanning

07. Which process is skipped when an email is received from safedomain.com, which is on the safelist?

a) outbreak filter

b) antivirus scanning

c) message filter

d) antispam scanning

08. What occurs when configuring separate incoming mail policies?

a) message splintering

b) message exceptions

c) message detachment

d) message aggregation

09. Which action must be taken before a custom quarantine that is being used can be deleted?

a) Delete the quarantine that is assigned to a filter

b) Remove the quarantine from the message action of a filter

c) Delete only the unused quarantine

d) Delete the quarantine that is not assigned to a filter

10. Which two features are applied to either incoming or outgoing mail policies?

(Choose two.)

a) Indication of Compromise

b) application filtering

c) outbreak filters

d) sender reputation filtering

e) antivirus


Solutions:


Question 01:- Answer: a

Question 02:- Answer: d

Question 03:- Answer: c

Question 04:- Answer: d

Question 05:- Answer: b

Question 06:- Answer: a, c

Question 07:- Answer: c

Question 08:- Answer: a

Question 09:- Answer: b

Question 10:- Answer: c, e


Not every IT certification is intended for professionals, but Cisco certification is a great deal. After achieving this Cisco 300-720, you can grab an opportunity to be an IT professional with unique capability and can help the industry or get a good job. Many individuals do the Cisco certifications just for the interest, and that payback as a profession because of the worth of this course.

Recent Posts

See All

Comments


bottom of page