Cisco®
CompTIA
Checkpoint
ISC
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
ISC2
Splunk®
Scrum
All Vendors
  2. Home
  3. Exams
  4. Cisco®
  5. 350-701

Free 350-701 Exam Braindumps (page: 37)

Page 36 of 153
PDF with 703 Questions

How is Cisco Umbrella configured to log only security events?

  1. per policy
  2. in the Reporting settings
  3. in the Security Settings section
  4. per network in the Deployments section

Answer(s): A

Explanation:

The logging of your identities' activities is set per-policy when you first create a policy. By default, logging is on and set to log all requests an identity makes to reach destinations. At any time after you create a policy, you can change what level of identity activity Umbrella logs.
From the Policy wizard, log settings are:
Log All Requests--For full logging, whether for content, security or otherwise Log Only Security Events--For security logging only, which gives your users more privacy--a good setting for people with the roaming client installed on personal devices Don't Log Any Requests--Disables all logging. If you select this option, most reporting for identities with this policy will not be helpful as nothing is logged to report on.


Reference:

https://docs.umbrella.com/deployment-umbrella/docs/log-management



How does Cisco Umbrella archive logs to an enterprise owned storage?

  1. by using the Application Programming Interface to fetch the logs
  2. by sending logs via syslog to an on-premises or cloud-based syslog server
  3. by the system administrator downloading the logs from the Cisco Umbrella web portal
  4. by being configured to send logs to a self-managed AWS S3 bucket

Answer(s): D

Explanation:

The Cisco Umbrella Multi-Org console has the ability to upload, store, and archive traffic activity logs from your organizations' Umbrella dashboards to the cloud through Amazon S3. CSV formatted Umbrella logs are compressed (gzip) and uploaded every ten minutes so that there's a minimum of delay between traffic from the organization's Umbrella dashboard being logged and then being available to download from an S3 bucket.
By having your organizations' logs uploaded to an S3 bucket, you can then download logs automatically to keep in perpetuity in backup storage.


Reference:

https://docs.umbrella.com/deployment-umbrella/docs/manage-logs



When web policies are configured in Cisco Umbrella, what provides the ability to ensure that domains are blocked when they host malware, command and control, phishing, and more threats?

  1. Application Control
  2. Security Category Blocking
  3. Content Category Blocking
  4. File Analysis

Answer(s): B



Which Cisco solution does Cisco Umbrella integrate with to determine if a URL is malicious?

  1. AMP
  2. AnyConnect
  3. DynDNS
  4. Talos

Answer(s): D

Explanation:

When Umbrella receives a DNS request, it uses intelligence to determine if the request is safe, malicious or risky -- meaning the domain contains both malicious and legitimate content. Safe and malicious requests are routed as usual or blocked, respectively. Risky requests are routed to our cloud-based proxy for deeper inspection. The Umbrella proxy uses Cisco Talos web reputation and other third-party feeds to determine if a URL is malicious.






Post your Comments and Discuss Cisco® 350-701 exam with other Community members:

Exam Discussions & Posts