An engineer must modify a policy to block specific addresses using Cisco Umbrella. The policy is created already and is actively used by devices, using many of the default policy elements. What else must be done to accomplish this task?
A.
Create a destination list for addresses to be allowed or blocked
B.
Use content categories to block or allow specific addresses
C.
Add the specified addresses to the identities list and create a block action
D.
Modify the application settings to allow only applications to connect to required addresses
https://docs.umbrella.com/managed-services/docs/msc-new-configure-destination-lists
A destination list is a list of internet requests (for example, a domain name) that is used to manage—block or allow—org access to specific internet destinations.
A destination list is a list of internet destinations that can be blocked or allowed based on the administrative preferences for the policies applied to the identities within your organization. A destination is a URL or fully qualified domain name. You can add a destination list to Umbrella at any time; however, a destination list does not come into use until it is added to a policy.
https://docs.umbrella.com/deployment-umbrella/docs/working-with-destination-lists
C make no sense, cause umbrella is used to enforce policies on identities not vice versa:
https://docs.umbrella.com/umbrella-user-guide/docs/manage-identities
Manage Identities
An identity is an internet capable entity that Umbrella protects through policies and monitors through reports. An identity can be a high-level entity within your system—for example, a network—or very granular—for example, a single user logged into Active Directory.
To protect your systems, you add identities to Umbrella, then create policies to which you add these identities. For more information about policies, see Manage DNS Policies and Manage the Web Policy.
This is WRONG. Identity list is uset to identify lets say your organisation. For example your organisation has IP of 108.2.3.100. You add this IP to Identity list ( ad a name for ex: CORP) and bind the policy to this Identity. In the policy that is assigned to this Identity ( Corp of address 108.2.3.100) you then configure destination list with Block/allow action.
This section is not available anymore. Please use the main Exam Page.350-701 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Alizade
7 months, 2 weeks agonep1019
9 months, 2 weeks agocyberwhizzy0
10 months, 1 week agostalkr3
1 year, 1 month agoJessie45785
1 year, 1 month agoTuxzinator
1 year, 3 months agoddev3737
1 year, 3 months agoross123
1 year, 4 months agoureis
1 year, 4 months agoEmlia1
1 year, 5 months agosis_net_sec
1 year, 7 months agoRandom000
1 year, 7 months agoRandom000
1 year, 7 months agoInitial14
1 year, 7 months agoInitial14
1 year, 7 months agoReeemQ
1 year, 7 months ago