Cisco 300-730 Practice Test - Questions Answers, Page 10
Question list
List of questions
Related questions
In order to enable FlexVPN to use a AAA attribute list, which two tasks must be performed? (Choose two.)
Define the RADIUS server.
Verify that clients are using the correct authorization policy.
Define the AAA server.
Assign the list to an authorization policy.
Set the maximum segment size.
Which technology and VPN component allows a VPN headend to dynamically learn post NAT IP addresses of remote routers at different sites?
DMVPN with ISAKMP
GETVPN with ISAKMP
DMVPN with NHRP
GETVPN with NHRP
An engineer must configure remote desktop connectivity for offsite admins via clientless SSL VPN, configured on a Cisco ASA to Windows Vista workstations. Which two configurations provide the requested access? (Choose two.)
Telnet bookmark via the Telnet plugin
RDP2 bookmark via the RDP2 plugin
VNC bookmark via the VNC plugin
Citrix bookmark via the ICA plugin
SSH bookmark via the SSH plugin
A network engineer must design a clientless VPN solution for a company. VPN users must be able to access several internal web servers. When reachability to those web servers was tested, it was found that one website is not being rewritten correctly by the AS
What is a potential solution for this issue while still allowing it to be a clientless VPN setup?
Set up a smart tunnel with the IP address of the web server.
Set up a NAT rule that translates the ASA public address to the web server private address on port 80.
Set up Cisco AnyConnect with a split tunnel that has the IP address of the web server.
Set up a WebACL to permit the IP address of the web server.
Which two types of SSO functionality are available on the Cisco ASA without any external SSO servers? (Choose two.)
SAML
NTLM
Kerberos
OAuth 2.0
HTTP Basic
Refer to the exhibit.
Which type of VPN implementation is displayed?
IKEv1 cluster
IKEv2 backup gateway
IKEv2 load balancer
IKEv2 reconnect
A network engineer is setting up a clientless SSLVPN on a Cisco AS
Remote users must be able to access an internal webserver via the URL example.com. Which two steps accomplish this task? (Choose two.)
Configure a bookmark for the webserver.
Configure routing so that the user's computer can reach the webserver.
Configure a DNS server that can resolve the webserver URL.
Configure a browser plugin on the Cisco ASA.
Configure routing so that the Cisco ASA can reach the webserver.
A network engineer has set up a FlexVPN server to terminate multiple FlexVPN clients. The VPN tunnels are established without issue. However, when a Change of Authorization is issued by the RADIUS server, the FlexVPN server does not update the authorization of connected FlexVPN clients.
Which action resolves this issue?
Add the aaa server radius dynamic-author command on the FlexVPN clients.
Fix the RADIUS key mismatch between the RADIUS server and FlexVPN server.
Add the aaa server radius dynamic-author command on the FlexVPN server.
Fix the RADIUS key mismatch between the RADIUS server and FlexVPN clients.
A company needs to ensure only corporate issued laptops and devices are allowed to connect with the Cisco AnyConnect client. The solution should be applicable to multiple operating systems, including Windows, MacOS, and Linux, and should allow for remote remediation if a corporate issued device is stolen. Which solution should be used to accomplish these goals?
Use a DAP registry check on the system to determine the relationship with the corporate domain.
Use a DAP file check on the system to determine the relationship with the corporate domain.
Install and authenticate user certificates on the corporate devices.
Install and authenticate machine certificates on the corporate devices
When a FlexVPN is configured, which two components must be configured for IKEv2? (Choose two.)
method
profile
proposal
preference
persistence
Question