CompTIA
Checkpoint
ISC
HP
Dell
EC-Council
EXIN
Fortinet
ITIL®
Juniper
PMI
Microsoft
VMware
Avaya
Google
Salesforce
Amazon
Palo Alto Networks
Certiport
ISC2
All Vendors
  2. Home
  3. Exams
  4. Cisco®
  5. 350-701

Free 350-701 Exam Braindumps (page: 82)

Page 82 of 153
PDF with 703 Questions

An organization uses Cisco FMC to centrally manage multiple Cisco FTD devices. The default management port conflicts with other communications on the network and must be changed.
What must be done to ensure that all devices can communicate together?

  1. Manually change the management port on Cisco FMC and all managed Cisco FTD devices
  2. Set the tunnel to go through the Cisco FTD
  3. Change the management port on Cisco FMC so that it pushes the change to all managed Cisco FTD devices
  4. Set the tunnel port to 8305

Answer(s): A

Explanation:

The FMC and managed devices communicate using a two-way, SSL-encrypted communication channel, which by default is on port 8305.
Cisco strongly recommends that you keep the default settings for the remote management port, but if the management port conflicts with other communications on your network, you can choose a different port. If you change the management port, you must change it for all devices in your deployment that need to communicate with each other.


Reference:

https://www.cisco.com/c/en/us/td/docs/security/firepower/misc/fmc-ftd-mgmt-nw/fmc- ftd-mgmtnw.html



Which service allows a user export application usage and performance statistics with Cisco Application Visibility and control?

  1. SNORT
  2. NetFlow
  3. SNMP
  4. 802.1X

Answer(s): B

Explanation:

Application Visibility and control (AVC) supports NetFlow to export application usage and performance statistics. This data can be used for analytics, billing, and security policies.



An engineer adds a custom detection policy to a Cisco AMP deployment and encounters issues with the configuration. The simple detection mechanism is configured, but the dashboard indicates that the hash is not 64 characters and is non-zero.
What is the issue?

  1. The engineer is attempting to upload a hash created using MD5 instead of SHA-256
  2. The file being uploaded is incompatible with simple detections and must use advanced detections
  3. The hash being uploaded is part of a set in an incorrect format
  4. The engineer is attempting to upload a file instead of a hash

Answer(s): A



Refer to the exhibit.



Refer to the exhibit. A Cisco ISE administrator adds a new switch to an 802.1X deployment and has difficulty with some endpoints gaining access.
Most PCs and IP phones can connect and authenticate using their machine certificate credentials. However printer and video cameras cannot base d on the interface configuration provided, what must be to get these devices on to the network using Cisco ISE for authentication and authorization while maintaining security controls?

  1. Change the default policy in Cisco ISE to allow all devices not using machine authentication .
  2. Enable insecure protocols within Cisco ISE in the allowed protocols configuration.
  3. Configure authentication event fail retry 2 action authorize vlan 41 on the interface
  4. Add mab to the interface configuration.

Answer(s): D



Page 82 of 153



Post your Comments and Discuss Cisco® 350-701 exam with other Community members:

David A commented on January 16, 2024
Good Colombia
Anonymous
upvote

Kim commented on May 25, 2023
I just purchased and downloaded my files. Everything looks good so far.
UNITED STATES
upvote