Download Cisco ASA Express Security.examskey.500-260.2019-01-03.1e.50q.vcex

Download Exam

File Info

Exam Cisco ASA Express Security (SAEXS)
Number 500-260
File Name Cisco ASA Express Security.examskey.500-260.2019-01-03.1e.50q.vcex
Size 1.04 Mb
Posted January 03, 2019
Downloads 24
Download Cisco ASA Express Security.examskey.500-260.2019-01-03.1e.50q.vcex

How to open VCEX & EXAM Files?

Files with VCEX & EXAM extensions can be opened by ProfExam Simulator.


With discount: 20%


Demo Questions

Question 1

Which security technique should be implemented to remediate after a threat is discovered?

  • A: NGIPS ruleset
  • B: retrospection
  • C: web security deployment
  • D: application control

Correct Answer: B

Question 2

Refer to the exhibit. 


Which statement describes the effect of the configuration?

  • A: The SFR is configured to passively inspect traffic on all adaptive security appliance interfaces.
  • B: If the SFR fails, redirected traffic that matches the service policy from the outside will be dropped.
  • C: If the SFR fails, all traffic from the outside will be dropped.
  • D: The SFR is configured as an inline inspector of traffic on all adaptive security appliance interfaces.

Correct Answer: B

Question 3

Which option is correct for configuring the SRF for passive, out-of-band traffic evaluation?

  • A: sfr fail-close oob
  • B: sfr monitor-only
  • C: sfr fail-open monitor-only
  • D: sfr passive-mode

Correct Answer: B

Question 4

An SFR module has been installed in the adaptive security appliance. Which command must be executed on the module to establish connectivity to FireSIGHT Management Center?

  • A: system install manager
  • B: config manager fmc host
  • C: config manager add
  • D: system manager fmc

Correct Answer: B

Question 5

Which three policy types are configured using Fire SIGHT Management Center? (Choose three.)

  • A: remote access
  • B: file
  • C: health
  • D: network discovery
  • E: malware
  • F: access list
  • G: firewall

Correct Answer: BCD

Question 6

Which application is required to enable Microsoft Active Directory identity integration for FirePOWER services?

  • A: Sourcefire User Agent
  • B: Microsoft Active Directory Manager
  • C: Cisco Directory Agent
  • D: Microsoft Active Directory Agent

Correct Answer: A

Question 7

Which port should be allowed to support communications between Sourcefire User Agent and FireSIGHT Management Center?

  • A: TCP/3306
  • B: TCP/3389
  • C: UDP/3389
  • D: TCP/443

Correct Answer: A

Question 8

Which access policy action should be applied if traffic is to pass without applying any additional inspection?

  • A: trust
  • B: allow
  • C: permit
  • D: monitor

Correct Answer: A

Question 9

An access policy that uses URL reputation values is defined. Which option best describes what happens if a reputation is not available for a URL?

  • A: The URL check is not triggered, and the default policy action is applied.
  • B: The URL check fails, and the traffic is dropped.
  • C: The URL check is unknown, and the traffic is quarantined.
  • D: The URL check is not triggered and, by default, the user is prompted to take an action to permit or deny.

Correct Answer: A

Question 10

Detection of an exploit kit that is installed on a device is an example of which IoC event category?

  • A: security intelligence
  • B: IPS
  • C: malware
  • D: firewall

Correct Answer: B





You can buy ProfExam with a 20% discount!


Use ProfExam Simulator to open VCEX and EXAM files