300-740試験無料問題集（201題）「Cisco Designing and Implementing Secure Cloud Access for Users and Endpoints 認定」

出題：1

Multifactor authentication enhances security by requiring:

A. Multiple verification methods before granting access

B. A single security question

C. Only a simple password

D. A username only for identification

正解：A 解答を投票する

出題：2

To validate traffic flow and telemetry reports for baseline and compliance behavior analysis, one should use:

A. Cisco Secure Network Analytics for in-depth network visibility

B. Paper-based tracking systems

C. Basic firewall rules without logging

D. Manual log reviews exclusively

正解：A 解答を投票する

出題：3

The importance of VPN policies for remote users is to ensure:

A. Secure and encrypted access to corporate resources from any location

B. Remote users cannot access sensitive corporate resources

C. The use of public Wi-Fi networks for corporate access

D. That remote users have a slower connection to prioritize office users

正解：A 解答を投票する

出題：4

To implement user and device trust in web applications, SAML authentication configures _________ for secure access.

A. SAML assertions

B. password policies

C. identity certificates

D. biometric data

正解：A 解答を投票する

出題：5

According to the MITRE ATT&CK framework, which approach should be used to mitigate exploitation risks?

A. Performing regular data backups and testing recovery procedures

B. Keeping systems updated with the latest patches

C. Ensuring that network traffic is closely monitored and controlled

D. Consistently maintaining up-to-date antivirus software

正解：B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：6

Which of the following is true about multifactor authentication for devices?

A. It can include something you know, something you have, and something you are

B. It decreases security by simplifying access

C. It only applies to mobile devices

D. It makes devices easier to hack

正解：A 解答を投票する

出題：7

The primary purpose of using a web application firewall (WAF) is to:

A. Monitor the content that users post on the web application

B. Increase website loading times

C. Limit the number of users accessing a web application

D. Protect web applications from vulnerabilities and attacks like SQL injection and XSS

正解：D 解答を投票する

出題：8

Refer to the exhibit. An engineer must configure SAML SSO in Cisco ISE to use Microsoft Azure AD as an identity provider. These configurations were performed:
* Configure a SAML IdP in ISE.
* Configure the Azure AD IdP settings.
Which two actions must the engineer take in Cisco ISE? (Choose two.)

A. Configure the Internal Identity Source Sequence setting.

B. Upload metadata from Azure AD to ISE.

C. Configure SAML groups in ISE.

D. Add a SAML IdP.

E. Configure the External Identity Sources settings.

正解：B,E 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：9

Endpoint posture policies are used to assess:

A. The user's personal preferences for software

B. The user's physical location

C. The security readiness of a device before granting network access

D. The speed of the network connection

正解：C 解答を投票する

出題：10

Restoring affected systems after a security incident is known as _________.

A. abandoning

B. complicating

C. reinstituting

D. quarantining

正解：C 解答を投票する

出題：11

User and device security in the Cisco Security Reference Architecture primarily focuses on:

A. Authentication and endpoint protection

B. Network segmentation

C. Physical access controls

D. Cloud storage encryption

正解：A 解答を投票する

出題：12

Which of the following is a feature of multifactor authentication (MFA)?

A. Is less secure than single-factor authentication

B. Requires multiple forms of identification before granting access

C. Only requires a password

D. Can only be used on mobile devices

正解：B 解答を投票する

出題：13

Refer to the exhibit. An engineer is investigating an issue by using Cisco Secure Cloud Analytics. The engineer confirms that the connections are unauthorized and informs the incident management team. Which two actions must be taken next? (Choose two.)

A. Quarantine the host

B. Create a firewall rule that has a source of Any, a destination of linux-gcp-east-4c, and a protocol of SSH.

C. Create a firewall rule that has a source of linux-gcp-east-4c, a destination of Any, and a protocol of SSH.

D. Reinstall the host from scratch.

E. Reinstall the host from a recent backup.

正解：A,B 解答を投票する

解説: (GoShiken メンバーにのみ表示されます)

出題：14

Workload, application, and data security are critical for protecting:

A. Physical devices only

B. Resources in cloud and on-premises environments

C. The perimeter network

D. User identities

正解：B 解答を投票する

300-740試験無料問題集「Cisco Designing and Implementing Secure Cloud Access for Users and Endpoints 認定」