SESA

Securing Email with Cisco Email Security Appliance (Exam 300-720 SESA)

The Securing Email with Cisco Email Security Appliance v1.0 (SESA 300-720) exam is a 90-minute exam associated with the CCNP Security, and Cisco Certified Specialist - Email Content Security certifications. This exam tests a candidate's knowledge of Cisco Email Security Appliance, including administration, spam control and antispam, message filters, data loss prevention, LDAP, email authentication and encryption, and system quarantines and delivery methods.

Course Outline:

• Configure Cisco Email Security Appliance feature
• Describe centralized services on a Cisco Content SMA
• Configure mail policies
• Control spam with Talos SenderBase and Antispam
• Describe graymail management solution
• Configure file reputation filtering and file analysis features
• Implement malicious or undesirable URLs protection
• Describe the bounce verification feature
• Describe the functions and capabilities of content filters
• Create text resources such as content dictionaries, disclaimers, and templates
• Configure message filters components, rules, processing order and attachment scanning
• Configure scan behavior
• Configure the Cisco ESA to scan for viruses using Sophos and McAfee scanning engines
• Configure outbreak filters
• Configure Data Loss Prevention (DLP)
• Configure and verify LDAP servers and queries (Queries and Directory Harvest Attack)
• Understand spam quarantine functions
• Understand SMTP functionality
• Configure Domain Keys and DKIM signing
• Configure SPF and SIDF
• Configure DMARC verification
• Configure forged email detection
• Configure email encryption
• Describe S/MIME security services and communication encryption with other MTAs
• Manage certificate authorities
• Configure quarantine (spam, policy, virus, and outbreak)
• Utilize safelists and blocklists to control email delivery
• Manage messages in local or external spam quarantines
• Configure virtual gateways