Wednesday, February 24, 2016

650-157 ISIES Cisco IronPort Security Instructor - Email Security

This exam tests your skills in guiding students to recognize email compliance and security requirements for an enterprise. You also will learn to help students design and integrate a solution into a medium to large network environment. With this certification, you can deliver email security courseware, troubleshoot the laboratory, and advise customers about email security solutions that are outside of the course material.

Exam Topics
The following topics are general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. In order to better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.

Monitoring
Incoming Mail Policies
Outgoing Mail Policies
Security Services
Networking
System Administration
Troubleshooting and Support
Command Line
Training Lab Administration

 


QUESTION 1
In the default settings, which of the following sender groups will match on a reputation score of+2?

A. BLACKLIST
B. WHITEUST
C. SUSPECTLIST
D. RELAYL1ST
E. UNKNOWNUST

Answer: E

Explanation:


QUESTION 2
Select two filters that come directly before and after the content filter in the email pipeline.

A. Message Filter
B. Reputation Filter
C. Anti-Spam
D. Outbreak Filters
E. Anti-Virus
F. RSA DLP

Answer: D,E

Explanation:


QUESTION 3
How would you configure the Recipient Access Table to accept all subdomains and the root
domain mydomain.com?

A. One entry: mydomain.com
B. Two entries: mydomain.com and '.mydomain.com
C. Two entries: mydomain.com and .mydomain.com
D. One entry: "mydomain.com

Answer: C

Explanation:


QUESTION 4
An enterprise has two email domains but only one is covered by their LDAP directory. Of the
following, which is the best method to address this?

A. Disable LDAP verification in the HAT
B. Remove LDAP Acceptance from the incoming listener
C. Create a mail policy for this domain that skips LDAP Accept checks.
D. Configure Bypass LDAP Accept in the RAT

Answer: D

Explanation:


QUESTION 5
Which one of the following commands is the "Administrator Role" restricted from exercising?

A. upgrade
B. shutdown
C. suspend
D. reload

Answer: A

Explanation:
upgrade ( however, starting AsyncOS 7.5 this has changed )
( ref
:http://www.cisco.com/en/US/docs/security/esa/esa7.5/ESA_7.5_Configuration_Guide.pdfStarting
in AsyncOS 7.5, administratorscan perform system upgrades, create
clusters, and join appliances to existing clusters)