- All Exams Instant Download
Which two attributes can be matched from the identity of the remote peer when using IKEv2 Name Manager? (Choose two.)
Which two attributes can be matched from the identity of the remote peer when using IKEv2 Name Manager? (Choose two.)A . fqdnB . hostnameC . IP addressD . kerberosView AnswerAnswer: A,B
Which split-tunnel policy allows remote client to use their local provider for Internet access when working from home?
An engineer notices that while an employee is connected remotely, all traffic is being routed to the corporate network. Which split-tunnel policy allows remote client to use their local provider for Internet access when working from home?A . No policy allows that type of configurationB . tunnelspecifiedC . excludespecifiedD ....
Which two features are available in the Plus license for Cisco AnyConnect? (Choose two.)
Which two features are available in the Plus license for Cisco AnyConnect? (Choose two.)A . Suite B cryptographyB . IPsec IKEv2C . Clientless SSL VPND . Network Access ManagerE . posture servicesView AnswerAnswer: D,E
Which cryptographic algorithm is used for data integrity?
Which cryptographic algorithm is used for data integrity?A . SHA-256B . ECDH-384C . ECDSA-256D . RSA-3072View AnswerAnswer: A
Which command displays the NBMA IP addresses when DMVPN is configured with tunnel protection?
Which command displays the NBMA IP addresses when DMVPN is configured with tunnel protection?A . show crypto sessionB . show ip nhrpC . show ip interface tunnelD . show crypto socketView AnswerAnswer: B
What are two benefits of using DTLS when implementing a Cisco AnyConnect SSI VPN on a Cisco ASA or router? (Choose two.)
What are two benefits of using DTLS when implementing a Cisco AnyConnect SSI VPN on a Cisco ASA or router? (Choose two.)A . provides latency avoidanceB . has enhanced dead peer detectionC . uses TLS Only for the tunnelD . provides greater security and integrity of the tunnelE . establishes...
Which two methods customize the installation of the Cisco AnyConnect client? (Choose two.)
Which two methods customize the installation of the Cisco AnyConnect client? (Choose two.)A . installation profilesB . command-line parametersC . client profilesD . resource profilesE . installer transformsView AnswerAnswer: B,E Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/vpn_client/anyconnect/anyconnect46/ administration/guide/b_AnyConnect_Administrator_Guide_4-6/customize-localize-anyconnect.pdf page 2
Which situation prevents the user from connecting?
Refer to the exhibit. You have a Clientless SSL VPN service on a Cisco ASA. Which situation prevents the user from connecting? A. The user has a non-Cisco VPN client B. The user’s browser is incompatible C. The user is behind a web proxy D. The Clientless SSL VPN protocol...
Which command do you run to prevent web browsing from the Cisco SSL VPN portal page?
You are configuring a Cisco ASA for Clientless SSL VPN. Which command do you run to prevent web browsing from the Cisco SSL VPN portal page?A . url-list disableB . http server disableC . http-proxy 0.0.0.0D . url-entry disableView AnswerAnswer: D
When using Clientless SSL VPN on a Cisco ASA, which authentication method is required for single sign-on?
When using Clientless SSL VPN on a Cisco ASA, which authentication method is required for single sign-on?A . TACACSB . LOCALC . RADIUSD . SAML 2.0View AnswerAnswer: D Explanation: Reference: https://www.cisco.com/c/en/us/td/docs/security/asa/asa910/asdm710/vpn/asdm-710vpn-config/webvpn-configure-users.html#ID-2271-00000055
