【多选题】
Which two advantages does the on-premise model for MDM deployment have over the cloud-based model?___
A. The on-premise model is easier and faster to de ploy than the cloud-based model
B. The on-premise model is more scalable than the cloud-based model
C. The on-premise model is generally less expensive than the cloud-based model
D. The on-premise model generally has less latency than the cloud- based model.
E. The on-premise model provides more control of the MDM solution than the cloud
查看试卷,进入试卷练习
微信扫一扫,开始刷题
相关试题
【多选题】
Which two actions can an end usts take to manage a lost or stolen device in Cisco ISE? ___
A. Activate Cisco ISE End point Protection Services to quarantine the device.
B. Add the mac address of the device to a list of blacklisted devices
C. Force the device to be locked with a PIN
D. Request revocation of the digital certificate of the device.
E. Reinstate a device that the user previously marked as lost or stolen
【多选题】
Which two problems can arise when a proxy firewall serves as the gateway between networks?___
A. It can prevent content caching
B. It can limit application support
C. It is unable to prevent direct connections to other networks
D. It can cause reduced throughput.
E. It is unable to provide antivirus protection
【多选题】
When using the Adaptive Security Device Manager(ASDM), which two methods are available to add a new root certificate?___
A. Use sCep
B. Install from SFTP server
C. Install from a file
D. Use Https
E. Use LDAP
【多选题】
Which two are considered basic security principles?___
A. Accountability
B. Redundancy
C. High Availabilit
D. Integrity
E. Confidentiality
【多选题】
Which two roles of the Cisco WSA are true?___
A. IPS
B. firewall
C. antispam
D. web proxy
E. URL filter
【单选题】
Which next-generation encryption algorithm supports four variants?___
A. SHA-2
B. SHA-1
C. MD5
D. HMAC
【单选题】
What aims to remove the abil ity to deny an action?___
A. Non-Repudiation
B. Accountability
C. Integrity
D. Deniability
【单选题】
Which statements about the native VLAN is true ?___
A. It is susceptible to VLAN hopping attacks.
B. It is the Cisco recommended VLAN for switch-management traffic
C. It is most secure when it is a ssigned to vLAn 1.
D. It is the cisco-recomme nded vlan for user traffic
【单选题】
There are two versions of IKE:IKEv1 and IKEv2. Both IKEv1 and IKEv2 protocols operate in phases IKEv1 operates in two phases. IKEv2 operates in how many phases?___
【单选题】
What does the dh group refer to?___
A. length of key for hashing C
B. length of key for encryption
C. tunnel lifetime key
D. length of key for key exchange
E. length of key for authentication
【单选题】
Which path do you follow to enable aaa through the SDM ?___
A. Configure Tasks > AAA
B. Configure > Addition Authentication > AAA
C. Configure > AAA
D. Configure > Additional Tasks > AAA
E. Configure Authentication > AAA
【单选题】
which technology cloud be used on top of an MPLS VPN to add confidentiality ?___
A. IPsec
B. 3DES
C. AES
D. SSL
【单选题】
Which term is most closely aligned with the basic purpose of a SIEM solution? ___
A. Non-Repudiation
B. Accountability
C. Causality
D. Repudiation
【单选题】
You have just deployed SNMPv3 in your environment, Your manager asks you to make sure that our SNMP agents can only talk to the SNMP Manager. What would you configure on your SNMI agents to satisfy this request?___
A. A SNMP View containing the SNMP managers
B. Routing Filter with the SNMP managers in it applied outbound
C. A standard ACL containing the SNMP managers applied to the SNMP configuration
D. A SNMP Group containing the SNMP managers
【单选题】
Which feature prevents loops by moving a nontrunking port into an errdisable state when a BPDU is received on that port?___
A. BPDU filte
B. DHCP snooping
C. BPDU guard
D. Port Fast
【单选题】
Which command enables port security to use sticky MAC addresses on a switch?___
A. switchport port-security violation restrict
B. switchport port-security mac-address sticky
C. switchport port-security violation protect
D. switchport port-security
【单选题】
When you edit an IPS subsignature, what is the effect on the parent signature and the family of subsignatures?___
A. The change applies to the parent signature and the entire family of subsignatures
B. The change applies to the parent signature and the subsignature that you edit
C. The change applies only to subsignatures that are numbered sequentially after the subsignature that you edit
D. Other signatures are unaffected, the change applies only to the subsignature that you dit
【单选题】
Which type of mechanism does Cisco FirePOWER de ploy to protect ag detected moving across other networks?___
A. antivirus scanning
B. policy-based
C. reputation-based
D. signature-based
【单选题】
What action must you take on the ise to blacklist a wired device?___
A. Locate the switch through which the device is connected and push an a cl restricting all access by the device
B. Issue a CoA request for the de vice's mac address to each access switch in the network
C. Revoke the device's certificate so it is unable to authenticate to the network
D. Add the device's MAc address to a list of black listed devices
【单选题】
Which type of firewall can perform deep packet inspection?___
A. packet-filtering firewall
B. stateless firewall
C. application firewall
D. personal firewall
【单选题】
What is the main purpose of Control Plane Policing?___
A. to prevent exhaustion of route-proce ssor resources
B. to organize the egress packet queues
C. to define traffic classes
D. to maintain the policy map
【单选题】
Which attack can be prevented by OSPF authentication?___
A. smurf attack
B. IP spoofing attack
C. denial of service attack
D. buffer overflow attack
【单选题】
What is the best definition of hairpinning?___
A. ingress traffic that traverses the outbound interface on a device
B. traffic that enters one interface on a device and that exits through another interface
C. traffic that enters and exits a device through the same interface
D. traffic that tunnels through a device interface
【单选题】
Which SNMPv3 security level provides authentication using HMAC with MD5, but does not use encryption?___
A. authPriv
B. authNo Priv
C. noAuthNoPriv
D. NoauthPriv
【单选题】
You have implemented a dynamic blacklist, using security intelligence to block illicit network activity. However, the blacklist contains several approved connections that users must access for usiness pur poses. Which action can you take to retain the blacklist while allowing users to access the approve d sites?___
A. Create a whitelist and manually add the approved addresses.
B. Disable the dynamic blacklist and deny the specif ic address on a whitelist while permitting the others
C. Edit the dynamic blacklist to remove the approved addresses
D. Disable the dynamic blacklist and create a static blacklist in its place
【单选题】
When connecting to an external resource,you must change a source IP address to use one IP address from a range of 207.165.201.1 to 207.165.1.30. Which option do you implement ?___
A. dynamic source NAT that uses an IP ad dress as a mapped source
B. static destination NAT that uses a subnet as a real de stination
C. dynamic source NAT that uses a range as a mapped source
D. static destination NAT that uses a subnet as a real source
【单选题】
Refer to the exhibit. 【nat(ins,any)dynamic interface】Which ty pe of NaT is configured on a Cisco ASA?___
A. dynamic NAT
B. source identity NAT
C. dynamic PAT
D. identity twice NAT
【单选题】
Which mitigation technology for web-based threats prevents the removal of confidential data from the network?___
A. CTA
B. DCA
C. AMP
D. DLP
【单选题】
Refer to the exhibit. What is the effect of the given configuration?___
A. It establishes the preshared key for the switch
B. It establishes the preshared key for the firewall.
C. It establishes the preshared key for the Cisco ISE appliance
D. It establishes the preshared key for the router.
【多选题】
What are two major considerations when choosing between a SPAN and a TAP when plementing IPS?___
A. the type of analysis the iS will perform
B. the amount of bandwidth available
C. whether RX and TX signals will use separate ports
D. the way in which media errors will be handled
E. the way in which dropped packets will be handled
【多选题】
What are two direct-to-tower methods for redirecting web traffic to Cisco Cloud Web Security?___
A. third-party proxies
B. Cisco Catalyst platforms
C. Cisco NAC Agent
D. hosted PAC files
E. CiSco ISE
【多选题】
Which three descriptions of RADIUS are true? ___
A. It uses TCP as its transport protocol.
B. Only the password is encrypted
C. It supports multiple transport protocols
D. It uses UDP as its transport protocol
E. It combines authentication and authorization
F. It separates authentication,authorization,and accounting
【多选题】
Which two configurations can prevent VLAN hopping attack from attackers at VLAN 10?___
A. using switchport trunk native vlan 10 command on trunk ports
B. enabling BPDU guard on all access ports
C. creating VLAN 99 and using switchport trunk native vlan 99 command on trunk ports
D. applying ACl between VLAN
E. using switchport mode access command on all host ports
F. using switchport nonegotiate command on dynamic desirable ports
【多选题】
What are two features of transparent firewall mode ___
A. It conceals the presence of the firewall from attackers
B. It allows some traffic that is blocked in routed mode
C. It enables the aSA to perform as a router.
D. It acts as a routed hop in the network.
E. It is configured by default
【多选题】
Which two models of A sa tend to be used in a data center?___
A. 5555X
B. 5585X
C. ASA service module
D. 5512X
E. 5540
F. 5520
【多选题】
Which two statements about hardware-based encrption are true?___
A. It is widely accessible
B. It is potentially easier to compromise than software-based encryption. It requires minimal configuration
C. It requires minimal configuration
D. It can be implemented without impacting performance
E. It is highly cost-effective
【多选题】
In which two modes can the Cisco We b Security appliance be de ployed?___
A. as a transparent proxy using the Secure Sockets Layer protocol
B. as a transparent proxy using the Web Cache Communication Protocol
C. explicit proxy mode
D. as a transparent proxy using the Hyper Text Transfer Protocol
E. explicit active mode
【单选题】
1.三相刀开关的图形符号与交流接触器的主触点符号是___。
A. 一样的
B. 可以互换
C. 有区别的
D. 没有区别
推荐试题
【单选题】
意识能动性实现的根本途径是___
A. 社会实践
B. 主观努力
C. 客观规律
D. 先进的物质手段
【单选题】
正确发挥意识能动作用的客观前提是___
A. 个人积极性的发挥
B. 集体智慧的调动
C. 解放思想
D. 对客观规律的正确反映
【单选题】
设想脱离物质的运动会导致___
A. 形而上学
B. 机械唯物论
C. 唯心主义
D. 二元论
【单选题】
时间具有一维性,这是指它的___
A. 可变性
B. 无限性
C. 不可逆性
D. 连续性
【单选题】
语言是意识的物质外壳,没有语言就不会有思维和意识,这种观点属于___
A. 唯心主义
B. 形而上学
C. 马克思主义哲学
D. 历史唯心主义
【单选题】
“狼孩”没有意识,这一事实说明___
A. 意识是生物界长期发展的产物
B. 意识是社会的产物
C. 意识是人脑发展的产物
D. 意识是对客观世界的反映
【单选题】
“意识是人脑分泌的特殊物质,”这是___
A. 辩证唯物主义的观点
B. 机械唯物主义的观点
C. 朴素唯物主义的观点
D. 庸俗唯物主义的观点
【单选题】
人工智能的出现和发展证明___
A. 意识不是人类所特有的现象
B. 物质是意识产生的基础
C. 对人脑机能的认识已经完成
D. 人工思维最终会超过人类思维
【单选题】
“动中有静,静中有动”说明___
A. 物质和运动的统一
B. 绝对运动和相对静止的统一
C. 有限性和无限性的统一
D. 唯物主义和辩证法的统一
【单选题】
古希腊哲学家克拉底鲁指出,万物瞬息万变,不可捉摸,人连一次也不能踏进同一条河流。这是一种___
A. 唯心主义的观点
B. 形而上学的观点
C. 相对主义诡辩论的观点
D. 庸俗进化论的观点
【单选题】
能够证明时间、空间的绝对性和相对性相统一的自然科学理论是___
A. 电磁场理论
B. 原子结构学说
C. 牛顿力学理论
D. 相对论
【单选题】
时间___
A. 是客观的
B. 是有限的
C. 是可知的
D. 是相对的
【单选题】
“机不可失,时不再来”指的是___
A. 时间的连续性
B. 时间的一维性
C. 时间的顺序性
D. 时间的重复性
【单选题】
是 ___
A. 主张充分发挥意识能动作用的观点
B. 主观唯心主义的观点
C. 客观唯心主义的观点
D. 朴素唯物主义的观点
【单选题】
在客观规律面前,人的主观能动性表现在___
A. 人可以改变规律
B. 人可以创造规律
C. 人可以消灭规律
D. 人可以认识和利用规律
【单选题】
事物的联系和运动之间的关系___
A. 相互联系构成运动
B. 运动和发展引起质变
C. 发展引起运动
D. 普遍联系和永恒发展
【单选题】
唯物辩证法的总特征是___
A. 量变和质变的观点
B. 辩证否定的观点
C. 联系和发展的观点
D. 对立统一的观点
【单选题】
___
A. 事物的联系是普遍的、无条件的
B. 事物的联系是现实的、具体的
C. 事物的运动是客观的、绝对的
D. 事物发展的根本原因是事物的内部矛盾
【单选题】
“割下来的手就不再是人手”这句话体现了___
A. 形而上学片面的、孤立的观点
B. 辩证法普遍联系的观点
C. 唯心主义的观点
D. 诡辩论的观点
【单选题】
唯物辩证法认为发展的实质是___
A. 事物数量的增加
B. 事物根本性质的变化
C. 事物的一切运动变化
D. 新事物的产生和旧事物的灭亡
【单选题】
区分新事物和旧事物的标志在于看它们___
A. 是不是在新的历史条件下出现的
B. 是不是符合事物发展规律、有强大生命力
C. 是不是具有新形式和新特点
D. 是不是得到绝大多数人的承认
【单选题】
质量互变规律揭示了___
A. 事物发展的动力和源泉
B. 事物发展的状态和过程
C. 事物发展的方向和道路
D. 事物发展的两种趋势
【单选题】
质和事物的存在是___
A. 相互对立的
B. 相互包含的
C. 直接同一的
D. 相互转化的
【单选题】
在实际工作中,要注意掌握分寸,防止“过”或“不及”,其关键在于___
A. 抓住事物的主要矛盾
B. 确定事物的质
C. 认识事物的量
D. 把握事物的度
【单选题】
区分量变和质变的根本标志是看___
A. 事物的变化是否显著
B. 事物的变化是否迅速
C. 事物的某些属性是否发生了变化
D. 事物的变化是否超出度的范围
【单选题】
量变的复杂性是指___
A. 量变的程度发展不同
B. 量变形式的多样性和总的量变过程中有部分质变
C. 质变中有量的扩张
D. 量变有在度的范围内的变化和突破度的范围的变化
【单选题】
量变中的阶段性部分质变表现了___
A. 事物内部各部分之间变化的不平衡性
B. 事物整体与某些构成部分之间变化的不平衡性
C. 事物与事物之间变化的不平衡性
D. 事物的本质属性与非本质属性之间变化的不平衡性
【单选题】
量变中的局部性部分质变是___
A. 事物的本质属性与非本质属性之间变化不平衡性的表现
B. 事物的各个部分之间变化不平衡性的表现
C. 事物的内部矛盾和外部条件变化不平衡性的表现
D. 事物的量和质变化不平衡性的表现
【单选题】
揭示事物发展的趋势和道路的规律是___
A. 对立统一规律
B. 质量互变规律
C. 否定之否定规律
D. 联系和发展规律
【单选题】
“肯定和否定相互渗透,在一定意义上,肯定就是否定。”这是一种___
A. 相对主义诡辩论的观点
B. 唯物辩证法的观点
C. 主观唯心主义的观点
D. 形而上学的观点
【单选题】
事物的否定方面是指___
A. 事物的积极方面
B. 事物的消极方面
C. 事物中维持其存在的方面
D. 事物中促使其灭亡的方面
【单选题】
作为辩证的否定的“扬弃”是___
A. 既保留又继承
B. 彻底抛弃
C. 既克服又保留
D. 矛盾的调和
【单选题】
辩证的否定是事物发展的环节,因为辩证的否定___
A. 把旧事物完全抛弃
B. 使旧事物发生量变
C. 是新事物产生、旧事物灭亡
D. 是从外部强加给事物的
【单选题】
否定之否定规律___
A. 在事物完成一个发展周期时才能完整地表现出来
B. 在事物发展过程中任何一点上都可以表现出来
C. 在事物经过量变和质变两种状态后表现出来
D. 在事物发展过程中经过肯定和否定两个阶段表现出来
【单选题】
事物发展的周期性体现了___
A. 事物发展的直线性与曲折性的统一
B. 事物发展是一个不断地回到出发点的运动
C. 事物发展的周而复始的循环性
D. 事物发展的前进性和曲折性的统一
【单选题】
直线论的错误在于只看到___
A. 事物发展的周期性而否认了前进性
B. 事物发展的前进性而否认了曲折性
C. 事物发展的间接性而否认了连续性
D. 事物发展的曲折性而否认了周期性
【单选题】
循环论的错误在于___
A. 只看到事物发展的普遍性,没有看到事物发展过程的特殊性
B. 只看到事物的绝对运动,没有看到事物的相对静止
C. 只看到事物发展道路的曲折性,没有看到事物发展趋势的前进性
D. 只看到新旧事物之间的连续性,没有看到新旧事物之间的间断性
【单选题】
对立统一规律揭示了___
A. 事物发展的动力和源泉
B. 事物发展的状态和过程
C. 事物发展的方向和道路
D. 事物发展的两种趋向
【单选题】
唯物辩证法的实质和核心是___
A. 对立统一规律
B. 质量互变规律
C. 否定之否定规律
D. 联系和发展的规律
【单选题】
辩证法所说的矛盾是指___
A. 人们思维中的前后不一的自相矛盾
B. 事物之间或事物内部各要素之间的对立统一
C. 对立面之间的相互排斥
D. 事物之间或事物内部各要素之间的相互依赖
