Cisco
CompTIA
ISC
EC-Council
EXIN
Fortinet
ITIL
Juniper
Microsoft
VMware
Avaya
SAP
Google
NVIDIA
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk
ServiceNow
All Vendors
  2. Home
  3. Exams
  4. Cisco
  5. 300-720

Cisco 300-720 Exam Questions
Securing Email with Cisco Email Security Appliance (300-720 SESA) (Page 3 )

Updated On: 21-Feb-2026
Page 3 of 31
PDF with 179 Questions

What are two phases of the Cisco ESA email pipeline? (Choose two.)

  1. reject
  2. workqueue
  3. action
  4. delivery
  5. quarantine

Answer(s): B,D

Explanation:

With DomainKeys or DKIM email authentication, the sender signs the email using public key cryptography. Configuring DomainKeys and DKIM Signing A signing key is the private key stored on the appliance. https://www.cisco.com/c/en/us/td/docs/security/esa/esa11- 1/user_guide/b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_010101.html?bookSearch =true


Reference:

https://www.cisco.com/c/en/us/td/docs/security/esa/esa12-1/user_guide/ b_ESA_Admin_Guide_12_1/b_ESA_Admin_Guide_12_1_chapter_011.pdf (p.1)



Which two action types are performed by Cisco ESA message filters? (Choose two.)

  1. non-final actions
  2. filter actions
  3. discard actions
  4. final actions
  5. quarantine actions

Answer(s): A,D

Explanation:

Non-final actions are actions that do not terminate the message filter evaluation, such as adding headers, setting variables, logging, etc. Final actions are actions that end the message filter evaluation and determine the fate of the message, such as accept, drop, bounce, quarantine, etc.


Reference:

User Guide for AsyncOS 15.0 for Cisco Secure Email Gateway, page 3-4.
https://www.cisco.com/c/en/us/td/docs/security/esa/esa11-1/user_guide/ b_ESA_Admin_Guide_11_1/b_ESA_Admin_Guide_chapter_01000.html



Which setting affects the aggressiveness of spam detection?

  1. protection level
  2. spam threshold
  3. spam timeout
  4. maximum depth of recursion scan

Answer(s): B

Explanation:

Spam threshold is a setting that determines the minimum score that a message must have to be classified as spam by Cisco ESA. The lower the threshold, the more aggressive the spam detection is.


Reference:

User Guide for AsyncOS 15.0 for Cisco Secure Email Gateway, page 6-5.
https://www.cisco.com/c/en/us/support/docs/security/email-security-appliance/118220- technote- esa-00.html



What is the order of virus scanning when multilayer antivirus scanning is configured?

  1. The default engine scans for viruses first and the McAfee engine scans for viruses second.
  2. The Sophos engine scans for viruses first and the McAfee engine scans for viruses second.
  3. The McAfee engine scans for viruses first and the default engine scans for viruses second.
  4. The McAfee engine scans for viruses first and the Sophos engine scans for viruses second.

Answer(s): D

Explanation:

https://www.cisco.com/c/en/us/td/docs/security/esa/esa12- 0/user_guide/b_ESA_Admin_Guide_12_0/b_ESA_Admin_Guide_chapter_01011.html

According to the User Guide for AsyncOS 12.0 for Cisco Email Security Appliances2, the order of virus scanning when multilayer antivirus scanning is configured is as follows:
The McAfee engine scans the message first. If the McAfee engine detects a virus, the message is dropped or repaired, depending on the configuration. If the McAfee engine does not detect a virus, the message is passed to the next layer of scanning.
The Sophos engine scans the message second. If the Sophos engine detects a virus, the message is dropped or repaired, depending on the configuration. If the Sophos engine does not detect a virus, the message is delivered to the recipient.



Which antispam feature is utilized to give end users control to allow emails that are spam to be delivered to their inbox, overriding any spam verdict and action on the Cisco ESA?

  1. end user allow list
  2. end user spam quarantine access
  3. end user passthrough list
  4. end user safelist

Answer(s): D

Explanation:

End user safelist is a feature that allows end users to specify email addresses or domains that they want to receive messages from, regardless of the spam verdict or action assigned by Cisco ESA. Messages from senders on the end user safelist are delivered to the end user's inbox without any spam filtering.


Reference:

User Guide for AsyncOS 15.0 for Cisco Secure Email Gateway, page 10-13.






Post your Comments and Discuss Cisco 300-720 exam dumps with other Community members:

Join the 300-720 Discussion