Exam overview
Associated certifications: CCNP Security
Cisco Certified Specialist – Email Content Security
This exam tests your knowledge of Cisco Email Security Appliance, including:
Administration
Spam control and antispam
Message filters
Data loss prevention
LDAP
Email authentication and encryption
System quarantines and delivery methods
Exam preparation : Securing Email with Cisco Email Security Appliance (SESA)
Exam Description
The Securing Email with Cisco Email Security Appliance v1.0 (SESA 300-720) exam is a 90-minute exam associated with the CCNP Security, and Cisco Certified Specialist – Email Content Security certifications. This exam tests a candidate’s knowledge of Cisco Email Security Appliance, including administration, spam control and antispam, message filters, data loss prevention, LDAP, email authentication and encryption, and system quarantines and delivery methods. The course, Securing Email with Cisco Email Security Appliance, helps candidates to prepare for this exam.
The following topics are general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. To better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.
15% 1.0 Cisco Email Security Appliance Administration
1.1. Configure Cisco Email Security Appliance features
1.1.a Hardware performance specifications
1.1.b Initial configuration process
1.1.c Routing and delivery features
1.1.d GUI
1.2. Describe centralized services on a Cisco Content SMA
1.3. Configure mail policies
1.3.a. Incoming and outgoing messages
1.3.b. User matching
1.3.c. Message splintering
15% 2.0 Spam Control with Talos SenderBase and Antispam
2.1 Control spam with Talos SenderBase and Antispam
2.2 Describe graymail management solution
2.3 Configure file reputation filtering and file analysis features
2.4 Implement malicious or undesirable URLs protection
2.5 Describe the bounce verification feature
20% 3.0 Content and Message filters
3.1 Describe the functions and capabilities of content filters
3.2 Create text resources such as content dictionaries, disclaimers, and templates
3.2.a Dictionaries filter rules
3.2.b Text resources management
3.3 Configure message filters components, rules, processing order and attachment scanning
3.4 Configure scan behavior
3.5 Configure the Cisco ESA to scan for viruses using Sophos and McAfee scanning engines
3.6 Configure outbreak filters
3.7 Configure Data Loss Prevention (DLP)
15% 4.0 LDAP and SMTP Sessions
4.1 Configure and verify LDAP servers and queries (Queries and Directory Harvest Attack)
4.2 Understand spam quarantine functions
4.2.a Authentication for end-users of spam quarantine
4.2.b Utilize spam quarantine alias to consolidate queries
4.3 Understand SMTP functionality
4.3.a Email pipeline
4.3.b Sender and recipient domains
4.3.c SMTP session authentication using client certificates
4.3.d SMTP TLS authentication
4.3.e TLS email encryption
20% 5.0 Email Authentication and Encryption
5.1 Configure Domain Keys and DKIM signing
5.2 Configure SPF and SIDF
5.3 Configure DMARC verification
5.4 Configure forged email detection
5.5 Configure email encryption
5.6 Describe S/MIME security services and communication encryption with other MTAs
5.7 Manage certificate authorities
15% 6.0 System Quarantines and Delivery Methods
6.1 Configure quarantine (spam, policy, virus, and outbreak)
6.2 Utilize safelists and blocklists to control email delivery
6.3 Manage messages in local or external spam quarantines
6.4 Configure virtual gateways
QUESTION 1
What is a benefit of enabling external SPAM quarantine on Cisco SMA?
A. It provides access to the SPAM quarantine interface on which a user can release, duplicate, or delete.
B. It provides the ability to scan messages by using two engines to increase a catch rate.
C. It provides the ability to consolidate SPAM quarantine data from multiple Cisco ESAs to one central console.
D. It provides the ability to back up SPAM quarantine from multiple Cisco ESAs to one central console.
Correct Answer: C
QUESTION 2
What occurs when configuring separate incoming mail policies?
A. message splintering
B. message exceptions
C. message detachment
D. message aggregation
Correct Answer: A
QUESTION 3
Which two statements about configuring message filters within the Cisco ESA are true? (Choose two.)
A. The filters command executed from the CLI is used to configure the message filters.
B. Message filters configuration within the web user interface is located within Incoming Content Filters.
C. The filterconfig command executed from the CLI is used to configure message filters.
D. Message filters can be configured only from the CLI.
E. Message filters can be configured only from the web user interface.
Correct Answer: AD
QUESTION 4
What is the default behavior of any listener for TLS communication?
A. preferred-verify
B. off
C. preferred
D. required
Correct Answer: B
QUESTION 5
What are two phases of the Cisco ESA email pipeline? (Choose two.)
A. reject
B. workqueue
C. action
D. delivery
E. quarantine
Correct Answer: BD
Actualkey Cisco 300-720 Exam pdf, Certkingdom Cisco 300-720 PDF
Best Cisco 300-720 Certification, Cisco 300-720 Training at Certkingdom.com
