300-720 SESA

Securing Email with Cisco Secure Email Gateway v1.1 (300-720)

Exam Description: Securing Email with Cisco Secure Email Gateway v1.1 (SESA 300-720) is a 90-minute exam associated with the CCNP Security Certification. This exam certifies a candidate’s knowledge of Cisco Secure Email Gateway (formerly Cisco Email Security Appliance), including administration, spam control and antispam, message filters, data loss prevention, LDAP, email authentication and encryption, and system quarantines and delivery methods.

The following topics are general guidelines for the content likely to be included on the exam. However, other related topics may also appear on any specific delivery of the exam. To better reflect the contents of the exam and for clarity purposes, the guidelines below may change at any time without notice.

1. 15% Administration
   
   1. 1.1 Configure Cisco Secure Email Gateway features
      
      1. Hardware and virtual machine performance specifications
      2. Initial configuration process
      3. Routing and delivery features
      4. GUI
      5. Manage certificate authorities
      6. Logging
   2. Describe centralized services on a Cisco Secure Email and Web Manager
   3. Configure mail policies
      
      1. Incoming and outgoing messages
      2. User matching
      3. Message splintering
   4. Integrate Cisco Secure Email Gateway with SecureX
   5. Configure Cisco Secure Email Threat Defense
2. 15% Spam Control with Talos SenderBase and Antispam
   
   1. Control spam with Talos SenderBase and Antispam
   2. Describe the graymail management solution
   3. Configure file reputation filtering and file analysis features
   4. Implement malicious or undesirable URL protection
   5. Describe the bounce verification feature
3. 20% Content and Message Filters
   
   1. Describe the functions and capabilities of content filters
   2. Create text resources such as content dictionaries, disclaimers, and templates
      
      1. Dictionary filter rules
      2. Text Resources Management
   3. Configure message filter components, rules, processing order, and attachment scanning
   4. Configure scan behavior
   5. Configure the Cisco Secure Email Gateway to scan for viruses using Sophos and McAfee scanning engines
   6. Configure outbreak filters
   7. Configure Data Loss Prevention (DLP)
4. 15% LDAP and SMTP Sessions
   
   1. Configure and verify LDAP servers and queries (Queries and Directory Harvest Attack)
   2. Understand spam quarantine functions
      
      1. Authentication for end users of spam quarantine
      2. Use spam quarantine alias to consolidate queries
   3. Understand SMTP functionality
      
      1. Email pipeline
      2. Sender and recipient domains
      3. SMTP session authentication using client certificates
      4. SMTP TLS authentication
      5. TLS email encryption
5. 20% Email Authentication and Encryption
   
   1. Configure Domain Keys and DKIM signing
   2. Configure SPF and SIDF
   3. Configure DMARC verification
   4. Configure forged email detection
   5. Configure email encryption
   6. Describe S/MIME security services and communication encryption with other MTAs
   7. Configure Cisco Secure Email
6. 15% System Quarantines and Delivery Methods
   
   1. Configure quarantine (spam, policy, virus, and outbreak)
   2. Use safelists and blocklists to control email delivery
   3. Manage messages in local or external spam quarantines
   4. Configure virtual gateways