Free Securing Networks with Cisco Firepower Exam 300-710 Exam Practice Test

An organization is using a Cisco FTD and Cisco ISE to perform identity-based access controls. A network administrator is analyzing the Cisco FTD events and notices that unknown user traffic is being allowed through the firewall. How should this be addressed to block the traffic while allowing legitimate user traffic?

• Modify the Cisco ISE authorization policy to deny this access to the user.
• Modify Cisco ISE to send only legitimate usernames to the Cisco FTD.
• Add the unknown user in the Access Control Policy in Cisco FTD.
• Add the unknown user in the Malware & File Policy in Cisco FTD.

An engineer has been tasked with providing disaster recovery for an organization's primary Cisco FMC. What must be done on the primary and secondary Cisco FMCs to ensure that a copy of the original corporate policy is available if the primary Cisco FMC fails?

• Configure high-availability in both the primary and secondary Cisco FMCs
• Connect the primary and secondary Cisco FMC devices with Category 6 cables of not more than 10 meters in length.
• Place the active Cisco FMC device on the same trusted management network as the standby device
• Restore the primary Cisco FMC backup configuration to the secondary Cisco FMC device when the primary device fails

With a recent summer time change, system logs are showing activity that occurred to be an hour behind real time Which action should be taken to resolve this issue?

• Manually adjust the time to the correct hour on all managed devices
• Configure the system clock settings to use NTP with Daylight Savings checked
• Manually adjust the time to the correct hour on the Cisco FMC.
• Configure the system clock settings to use NTP

A network engineer must configure an existing firewall to have a NAT configuration. The now configuration must support more than two interlaces per context. The firewall has previously boon operating transparent mode. The Cisco Secure Firewall Throat Defense (FTD) device has been deregistered from Cisco Secure Firewall Management Center (FMC). Which set of configuration actions must the network engineer take next to meet the requirements?

• Run the configure manager add routed command from the Secure FTD device CL1, and reregister with Secure FMC.
• Run the configure firewall routed command from the Secure FTD device CD, and reregister with Secure FMC.
• Run the configure manager add routed command from the Secure FMC CLI. and reregister with Secure FMC.
• Run the configure firewall routed command from the Secure FMC CLI. and reregister with Secure FMC.

A network engineer is logged into the Cisco AMP for Endpoints console and sees a malicious verdict for an identified SHA-256 hash. Which configuration is needed to mitigate this threat?

• Add the hash to the simple custom deletion list.
• Use regular expressions to block the malicious file.
• Enable a personal firewall in the infected endpoint.
• Add the hash from the infected endpoint to the network block list.

An engineer must create an access control policy on a Cisco Secure Firewall Threat Defense device. The company has a contact center that utilizes VoIP heavily, and it is critical that this traffic is not .... by performance issues after deploying the access control policy Which access control Action rule must be configured to handle the VoIP traffic?

• monitor
• trust
• block
• allow

An engineer is configuring Cisco FMC and wants to limit the time allowed for processing packets through the interface However if the time is exceeded the configuration must allow packets to bypass detection What must be configured on the Cisco FMC to accomplish this task?

• Fast-Path Rules Bypass
• Cisco ISE Security Group Tag
• Inspect Local Traffic Bypass
• Automatic Application Bypass

What is the result when two users modify a VPN policy at the same lime on a Cisco Secure Firewall Management Center managed device?

• Both users can edit the policy arid the last saved configuration persists.
• The first user locks the configuration when selecting edit on the policy.
• The changes from both users will be merged together into the policy.
• The system prevents modifications to the policy by multiple users.

In a multi-tennent deployment where multiple domains are in use. which update should be applied outside of the Global Domain?

• minor upgrade
• local import of intrusion rules
• Cisco Geolocation Database
• local import of major upgrade

A security analyst must create a new report within Cisco FMC to show an overview of the daily attacks, vulnerabilities, and connections. The analyst wants to reuse specific dashboards from other reports to create this consolidated one. Which action accomplishes this task?

• Create a new dashboard object via Object Management to represent the desired views.
• Modify the Custom Workflows within the Cisco FMC to feed the desired data into the new report.
• Copy the Malware Report and modify the sections to pull components from other reports.
• Use the import feature in the newly created report to select which dashboards to add.