首页 > 题库 > 300-820

拥有CCNP级别的300-820考试资格，同时包含历年真题和备考资料。适用于Cisco Collaboration领域的300-820考试，即CLCEI | 思博网络考试。

通过我们的全面考试题库和学习资料，轻松掌握CCNP 300-820考试的内容。 Cisco协作云与边缘解决方案实施 v1.0考试（CLCEI 300-820），作为CCNP协作认证的一部分，旨在评估考生对协作云与边缘解决方案、高速公路网络配置、Cisco WebEx Teams混合式解决方案以及新兴技术的理解程度。我们的模拟测试提供了一个全面的备考平台，其中包含各种考试题库、样题以及模拟考试，有助于提升您应对考试的准备程度。您可以访问我们的考试资料以及参考答案，从而有效地进行练习，并模拟真实的考试场景。由于我们专注于历年真题与答案的讲解、在线历年真题以及考试练习，您将能够充分准备，从而在CCNP 300-820 CLCEI考试中取得成功，进一步提升您在思科协作领域的专业知识。

问题 #1

Which two components reduce the attack surface on an endpoint? (Choose two.)

A. secure boot

B. load balancing

C. increased audit log levels

D. restricting USB ports

E. full packet captures at the endpoint

正确答案：D

问题 #2

Which regex matches only on all lowercase letters?

A. [az]+

B. [^az]+

C. az+

D. a*z+

正确答案：D

问题 #3

A user received a malicious attachment but did not run it. Which category classifies the intrusion?

A. weaponization

B. reconnaissance

C. installation

D. delivery

正确答案：C

问题 #4

What causes events on a Windows system to show Event Code 4625 in the log messages?

A. The system detected an XSS attack

B. Someone is trying a brute force attack on the network

C. Another device is gaining root access to the system

D. A privileged user successfully logged into the system

正确答案：B

问题 #5

Which security principle is violated by running all processes as root or administrator?

A. principle of least privilege

B. role-based access control

C. separation of duties

D. trusted computing base

正确答案：D

问题 #6

Which artifact is used to uniquely identify a detected file?

A. file timestamp

B. file extension

C. file size

D. file hash

正确答案：A

问题 #7

Which attack method intercepts traffic on a switched network?

A. denial of service

B. ARP cache poisoning

C. DHCP snooping

D. command and control

正确答案：B

问题 #8

What is an attack surface as compared to a vulnerability?

A. any potential danger to an asset

B. the sum of all paths for data into and out of the application

C. an exploitable weakness in a system or its design

D. the individuals who perform an attack

正确答案：A

问题 #9

The target web application server is running as the root user and is vulnerable to command injection. Which result of a successful attack is true?

A. cross-site scripting

B. cross-site scripting request forgery

C. privilege escalation

D. buffer overflow

正确答案：A

问题 #10

An organization has recently adjusted its security stance in response to online threats made by a known hacktivist group. What is the initial event called in the NIST SP800-61?

A. online assault

B. precursor

C. trigger

D. instigator

正确答案：D

问题 #11

Which principle is being followed when an analyst gathers information relevant to a security incident to determine the appropriate course of action?

A. decision making

B. rapid response

C. data mining

D. due diligence

正确答案：A

问题 #12

Which two elements in the table are parts of the 5-tuple? (Choose two.)

A. First Packet

B. Initiator User

C. Ingress Security Zone

D. Source Port

E. Initiator IP

正确答案：B

问题 #13

A network engineer discovers that a foreign government hacked one of the defense contractors in their home country and stole intellectual property. What is the threat agent in this situation?

A. the intellectual property that was stolen

B. the defense contractor who stored the intellectual property

C. the method used to conduct the attack

D. the foreign government that conducted the attack

正确答案：D

问题 #14

How does certificate authority impact a security system?

A. It authenticates client identity when requesting SSL certificate

B. It validates domain identity of a SSL certificate

C. It authenticates domain identity when requesting SSL certificate

D. It validates client identity when communicating with the server

正确答案：B

问题 #15

In a SOC environment, what is a vulnerability management metric?

A. code signing enforcement

B. full assets scan

C. internet exposed devices

D. single factor authentication

正确答案：D

问题 #16

What are two social engineering techniques? (Choose two.)

A. privilege escalation

B. DDoS attack

C. phishing

D. man-in-the-middle

E. pharming

正确答案：D

问题 #17

What is the virtual address space for a Windows process?

A. physical location of an object in memory

B. set of pages that reside in the physical memory

C. system-level memory protection feature built into the operating system

D. set of virtual memory addresses that can be used

正确答案：A

问题 #18

Which piece of information is needed for attribution in an investigation?

A. proxy logs showing the source RFC 1918 IP addresses

B. RDP allowed from the Internet

C. known threat actor behavior

D. 802.1x RADIUS authentication pass arid fail logs

正确答案：C

查看更多题库 »