NSK101 Practice Test & Exam Questions (Page 14 )

QUESTION: 81

You want to determine which NewEdge data planes that your remote users have been recently using.

Which area of the Netskope Tenant UI would provide this information?

Client Steering under Digital Experience Management
Network Steering under Digital Experience Management
Users page under Settings
Devices page under Settings

Answer(s): A

Explanation:

NewEdge Data Planes Monitoring:

To determine which NewEdge data planes your remote users have been using, you need to access the relevant monitoring section in the Netskope Tenant UI.

Client Steering under Digital Experience Management:

The Client Steering section under Digital Experience Management provides detailed information on how traffic is being steered for remote users.

This section includes insights into the NewEdge data planes being utilized by users.

Steps:

Navigate to Digital Experience Management in the Netskope Tenant UI.

Select Client Steering to view detailed reports and logs on traffic steering.

Analyze the data to identify the NewEdge data planes used by remote users recently.

Reference:

For more details on accessing and using the Client Steering section under Digital Experience Management, refer to the Netskope documentation on digital experience management and client steering.

Show Answer Next Question

QUESTION: 79

Which Netskope platform component uses NewEdge Traffic Management for traffic steering?

Cloud Exchange
Client
Data Plane On-Premises
Explicit Proxy Over Tunnel

Answer(s): B

Explanation:

NewEdge Traffic Management:

NewEdge is Netskope's high-performance global network designed to deliver fast and secure access to the internet and cloud applications.

NewEdge Traffic Management ensures efficient routing and traffic steering for optimal performance and security.

Client Integration:

The Netskope Client uses NewEdge Traffic Management to steer traffic securely to the Netskope cloud.

It ensures that user traffic is routed through the best possible path for performance and security.

The Client component is responsible for redirecting user traffic to the NewEdge network, applying security policies, and ensuring secure access.

Reference:

For detailed information on NewEdge Traffic Management and how the Netskope Client utilizes it, refer to the Netskope documentation on traffic management and client configuration.

Show Answer Next Question

QUESTION: 78

You determine that a business application uses non-standard HTTPS ports. You want to steer all HTTPS traffic for this application and have visibility and control over user activities.

Which action will allow you to accomplish this task?

Create a steering exception for the application's domain and ports.
Define a Private Agg for the application's domain and ports.
Configure Non-standard ports in the Steering Configuration.
Select All Traffic in the Steering Configuration.

Answer(s): C

Explanation:

Identify Non-standard HTTPS Ports:

Determine the specific non-standard HTTPS ports used by the business application.

Create a Steering Exception:

Navigate to the Netskope admin console.

Go to the steering configuration section and create a new steering exception.

Specify the domain of the business application and include the non-standard HTTPS ports.

This exception will ensure that traffic to this application is steered correctly for inspection and control.

Configure Non-standard Ports in the Steering Configuration:

Go to the steering configuration settings.

Add the identified non-standard HTTPS ports to ensure that all traffic using these ports is captured and inspected.

This ensures comprehensive visibility and control over the user activities on the application.

Reference:

For more details on steering configurations and managing exceptions, refer to the Netskope documentation on steering traffic and configuring non-standard ports.

Show Answer Next Question

QUESTION: 77

Users are connecting to sanctioned cloud applications from public computers, such as from a hotel business center.

Which traffic steering method would work in this scenario?

proxy chaining
IPsec/GRE tunnel
reverse proxy
steering client

Answer(s): C

Explanation:

Reverse Proxy Overview:

A reverse proxy allows users to access sanctioned cloud applications securely from public or untrusted networks.

It ensures that the traffic is inspected and policy controls are enforced before reaching the cloud application.

Scenario Justification:

Users connecting from public computers, such as those in hotel business centers, cannot have a steering client installed, and IPsec/GRE tunnels are not feasible.

Proxy chaining requires control over the client's browser settings, which is not possible in this scenario.

A reverse proxy can handle the traffic without requiring configuration changes on the public computer.

Implementation:

Configure the reverse proxy to handle traffic for sanctioned applications.

Ensure the reverse proxy settings are enforced via your organization's security policies.

Reference:

Detailed configurations and use cases can be found in the Netskope documentation on reverse proxy solutions.

Show Answer Next Question

QUESTION: 76

All users are going through Netskope's Next Gen SWG. Your CISO requests a monthly report of all users who are accessing cloud applications with a "Low" or a "Poor" CCL, where the activity is either "Edit" or "Upload".

Using the Advanced Analytics interface, which two statements describe which actions must be performed in this scenario? (Choose two.)

Create a report using the Data Collection "Page Events", filtering on the activities "Edit" and "Upload" for cloud apps with CCL values of "Low" or "Poor".
Schedule a report with a monthly recurrence to be sent by e-mail with the attached PDF document at the end of each month.
Create a report using the Data Collection "Application Events" filtering on the activities "Edit" and "Upload" for cloud apps with CCL values of "Low" or "Poor".
Schedule a report with a monthly recurrence to be sent by SMS with the attached PDF document at the end of each month.

Answer(s): A,B

Explanation:

Create the Report in Advanced Analytics:

Data Collection:
Use the "Page Events" data collection, which captures detailed user activities on web pages, including edits and uploads.

Filters:
Apply filters to include only the activities "Edit" and "Upload".

Add another filter for the Cloud Confidence Level (CCL) to include only those with "Low" or "Poor" ratings.

This ensures the report focuses on the specified user activities within cloud applications that have lower security ratings.

Steps:
Navigate to Advanced Analytics > Reports.

Create a new report and select "Page Events" as the data collection source.

Apply the necessary filters for activities and CCL values.

Schedule the Report:

Monthly Recurrence:

Set the report to run on a monthly schedule to ensure regular updates.

Configure the report to be sent via email with a PDF attachment.

Steps:
In the report scheduling options, set the recurrence to monthly.

Specify the email recipients, ensuring the CISO receives the report.

Select PDF as the report format.

Reference:

For more details on creating and scheduling reports, refer to the Netskope documentation on Advanced Analytics and report generation.

Show Answer Next Question

Netskope NSK101 Exam
Netskope Certified Cloud Security Administrator (Page 14 )

QUESTION: 81

Explanation:

Reference:

QUESTION: 79

Explanation:

Reference:

QUESTION: 78

Explanation:

Reference:

QUESTION: 77

Explanation:

Reference:

QUESTION: 76

Explanation:

Reference:

Join the NSK101 Discussion

Netskope NSK101 Exam Netskope Certified Cloud Security Administrator (Page 14 )

QUESTION: 81

Explanation:

Reference:

QUESTION: 79

Explanation:

Reference:

QUESTION: 78

Explanation:

Reference:

QUESTION: 77

Explanation:

Reference:

QUESTION: 76

Explanation:

Reference:

Join the NSK101 Discussion

Netskope NSK101 Exam
Netskope Certified Cloud Security Administrator (Page 14 )