1. Home
  2. Cisco
  3. 300-720

Securing Email with Cisco Email Security Appliance (SESA)

Exam Details

  • Exam Code
    :300-720
  • Exam Name
    :Securing Email with Cisco Email Security Appliance (SESA)
  • Certification
    :CCNP Security
  • Vendor
    :Cisco
  • Total Questions
    :148 Q&As
  • Last Updated
    :Mar 26, 2025

Cisco CCNP Security 300-720 Questions & Answers

  • Question 141:

    What are the two different phases in the process of Cisco Secure Email Gateway performing S/MIME encryption? (Choose two.)

    A. Attach the encrypted public key to the message

    B. Encrypt the message body using the session key

    C. Send the encrypted message to the sender

    D. Attach the encrypted symmetric key to the message

    E. Create a pseudo-random session key

  • Question 142:

    A company has recently updated their security policy and now wants to drop all email messages larger than 100 MB coming from external sources. The Cisco Secure Email Gateway is LDAP integrated and all employee accounts are in the

    group "Employees".

    Which filter rule configuration provides the desired outcome?

    A. if (mail-from-group == 'Employees') and (body-size > "100M") {drop()}

    B. if (mail-from-group != 'Employees') and (body-size > 100M) {drop();}

    C. if (mail-from-group == 'Employees') and (body-size > 100M) {bounce();}

    D. if ('mail-from-group != Employees') and (body-size > 100M) {drop();}

  • Question 143:

    A security administrator deployed a Cisco Secure Email Gateway appliance with a mail policy configured to store suspected spam for review. The appliance is the DMZ and only the standard HTTP/HTTPS ports are allowed by the firewall. An administrator wants to ensure that users can view any suspected spam that was blocked. Which action must be taken to meet this requirement?

    A. Enable the external Spam Quarantine and enter the IP address and port for the Secure Email and Web Manager

    B. Enable the Spam Quarantine and leave the default settings unchanged

    C. Enable End-User Quarantine Access and point to an LDAP server for authentication

    D. Enable the Spam Quarantine and specify port 80 for HTTP and port 443 for HTTPS

  • Question 144:

    What is a benefit of deploying Cisco Secure Email and Web Manager?

    A. centralized management of software updates for Cisco Secure Email Gateway

    B. centralized management of logs for Cisco Secure Email Gateway

    C. centralized management of quarantined email

    D. centralized management of botnet directories

  • Question 145:

    A trusted partner of an organization recently experienced a new campaign that was leveraging JavaScript attachments to trick users into executing malware. As a result, they created a local policy to deny messages with JavaScript attachments. Which action should the administrator of the organization take to ensure encrypted communications are delivered to the intended partner recipient?

    A. Insert the X-PostX-Use-Script' header with a value of false to the encrypted messages

    B. Select JavaScript-free' option within the Cisco Secure Email Encryption Service Add-in

    C. Create an outgoing content filter and add the Encrypt and Deliver Nov/ action with Use-Script option deselected

    D. Create a new encryption profile and deselect the 'Use-Script' envelope settings option

  • Question 146:

    DRAG DROP

    Drag and drop the graymail descriptions from the left onto the verdict categories they belong to on the right.

    Select and Place:

  • Question 147:

    DRAG DROP

    Drag and drop the SMTP Call-Ahead Server Profile Settings from the left onto the descriptions on the right.

    Select and Place:

  • Question 148:

    DRAG DROP

    Drag and drop authentication options for End-User Quarantine Access from the left onto the corresponding configuration steps on the right.

    Select and Place:

Related Exams:

Tips on How to Prepare for the Exams

Nowadays, the certification exams become more and more important and required by more and more enterprises when applying for a job. But how to prepare for the exam effectively? How to prepare for the exam in a short time with less efforts? How to get a ideal result and how to find the most reliable resources? Here on Vcedump.com, you will find all the answers. Vcedump.com provide not only Cisco exam questions, answers and explanations but also complete assistance on your exam preparation and certification application. If you are confused on your 300-720 exam preparations and Cisco certification application, do not hesitate to visit our Vcedump.com to find your solutions here.