Practice 350-701 Exam Online

Question 1

What is a required prerequisite to enable malware file scanning for the Secure Internet Gateway?

A : Enable IP Layer enforcement.

B : Activate the Advanced Malware Protection license

C : Activate SSL decryption.

D : Enable Intelligent Proxy.

Answer: D

Question 2

An engineer has enabled LDAP accept queries on a listener. Malicious actors must be prevented from quickly identifying all valid recipients. What must be done on the Cisco ESA to accomplish this goal?

A : Configure incoming content filters

B : Use Bounce Verification

C : Configure Directory Harvest Attack Prevention

D : Bypass LDAP access queries in the recipient access table

Answer: C

Question 3

Which technology reduces data loss by identifying sensitive information stored in public computing environments?

A : Cisco SDA

B : Cisco Firepower

C : Cisco HyperFlex

D : Cisco Cloudlock

Answer: D

Question 4

Which two prevention techniques are used to mitigate SQL injection attacks? (Choose two)

A : Check integer, float, or Boolean string parameters to ensure accurate values.

B : Use prepared statements and parameterized queries.

C : Secure the connection between the web and the app tier.

D : Write SQL code instead of using object-relational mapping libraries.

E : Block SQL code execution in the web application database login.

Answer: B,E

Question 5

A network engineer has entered the snmp-server user andy myv3 auth sha cisco priv aes 256

cisc0380739941 command and needs to send SNMP information to a host at 10.255.254.1. Which command

achieves this goal?

A : snmp-server host inside 10.255.254.1 version 3 andy

B : snmp-server host inside 10.255.254.1 version 3 myv3

C : snmp-server host inside 10.255.254.1 snmpv3 andy

D : snmp-server host inside 10.255.254.1 snmpv3 myv3

Answer: A

Name:	Implementing and Operating Cisco Security Core Technologies
Exam Code:	350-701
Certification:	CCNP Security
Vendor:	Cisco
Total Questions:	731
Last Updated:	Apr 01, 2026

Cisco 350-701 Answers